i installed bt5 r3 on my toshiba portege m400 and when i go to use the terminal i get this error could not launch application Failed to execute child process "gnome-terminal" (Input/output error) but if i use the live cd the terminal works with out any problems only do's it is if it is installed on the hdd i have looked all over and alot of people has been having the same problem as i have since 2008 and thy are all using different pc and different linux os the only thing in comman is that it is gnome and none of them has a fix i tryed Terminator konsole and it works fine with no error's

i font out how to fix the problem go terminator under applications/accessories and type in

Problem is after entering startx command the consoles runs few commands and then system halts at black screen without the cursor. Also the led for caps lock is blinking untill system is restarted by ourself.
PLZ help as bt is not running and i need it urgently for a locale based network.:(:(

Hello peoples!
This is my first thread on this forum and i hope I'm not posting it in the wrong section.

I'm a student of Applied Sciences and therefore i wanted to see how secure my Home Network is...
So first thing i did was firing up reaver, worked like a charm within 5 hours and the WPS exploit!
The only thing which challenged me after that was finding a Wordlist which contained my pretty complex pw.
(in the end i wrote in a file myself and it had success of course...)

So now i wanted to gain access to my network and look at the traffic using Wireshark.
I knew the passphrase, but Wireshark did not show me any relevant Packages containing valid IP adresses.
This made me a little suspicious and I've checked why it is behaving like that.
(Tried nmap, arping, arpsniff, angry ip scanner)

We have 4 Pcs and my Laptop in our house.
All of the 4 Pcs have their adresses static and are connected wired to the Router.
So i thought, maybe the Wired interface is a closed environment for itself and the WiFi is isolated.
Turned on my Smartphone, connected to the AP Wireless and tried again with no success.
I can only see failing ARP and DHCP requests along some Netbios data (NBsomethingsomething coming from my own host...)

But the thing is - my AP has the Client isolation feature turned on. (Where the AP does NOT allow communication between clients, afaik)
Dont know since when it has this feature turned on but okey (i used to play my music via airplay which worked a month ago...)

My question is: Is there any other possibility a hacker could gain access to the devices or even the router itself? Is the IP in any other way visible to others?

I'm using a Belkin Model: F7D1101 v1 Basic Wireless USB Adapter on my Desktop pc and trying to connect to a Cisco DPC3825 Wireless-N Modem/Router. When in Backtrack 5 R3 and trying to connect to my router i get a Bad Password error every time?? Anyone know what causes this and how to fix it? All of my other devices connect with the same password i type to try and connect to it, including this computer when i'm using Windows 7 or Ubuntu 12.04 LTS. :confused:

Hey, I have an Acer Aspire One Netbook and I can install backtrack on it, but one I try to do too much it just freezes. When I fist got it and pulled it out of the box it worked perfectly with backtrack for about a week and then all of a sudden it just kept freezing. I was thinking maybe its something with memory and it just needs time to think, but i let it sit over night on the screen and nothing changed. Could it be a hardware issue. I'm not wanting someone to teach me how to hack, i just would like someone to help me get it working. Thanks for you time.

This is most likely one of the most stupid questions you're get today but: I tried to download BT5r3-KDE-64 for windows as a torrent using UTorrent and I was wondering if that could cause the file to become corrupted. I'm setting it up on a USB with UNetbootin for use as a livecd(usb), Yes I have formatted the usb, I tried verifying with md5sum but the hashcalc wouldn't respond. I got it to boot from usb and the BT background and everything came up but while loading I received this message:

Can not mount /dev/loop0 (/cdrom/casper/filesystem.squashfs) on //filesystem.squashfs

What is wrong here and what can I do to fix it? I googled and a few people had the same issue with Linux but through downloading directly, not a torrent. Could using UTorrent be affecting this, even if I am using the torrent available through the BT site?

i have an EEE pc 1005HAB and it has a intel GMA 950 chipset.
my primary laptop monitor's resolution is 1024x600, works no problem.
my secondary monitor which is to the right of monitor0, is running at 1024x768.

the problem is, my 2nd monitors native resolution is 1600x1200. when i go into display settings, i set the 2nd monitor to the higher resolution. BT asks me to log out and back in, no problem. BUT, once i do that and start X again, its back to 1024x768!

also, i know my video card supports the higher resolution. how? i fire up windows (dual boot), and monitor 2 is running at 1600x1200 just fine....

any ideas peeps?

oh ok, heres some more info-
on boot, the intel GMA 950 reports an error about the virtual display
something like "resolution mode 2624x1200 not supported"
which, is true but also not... i mean a virtual display, IS 2624, that makes sense. BUT im using an external monitor, not one single monitor....
hm?

I recently installed BackTrack 5 R3 (32bit) to my 16GB USB Flash drive using latest Unetbootin (formatted to FAT32). It works fine on my laptop in which I created it but when I try to boot my desktop computer (its kinda old but it does have USB-boot support) with it, I only get this:

Code:
No DEFAULT or UI configuration directive found!
boot:
Can someone help me?

I'm using Back Track 5, with Broadcom Wireless Adapter / DW1501 Wireless-N WLAN Half-Mini Card
i've tried to hack my own WEP security before and it was successful!

Now i've changed my router and i wanna try to hack this one but the data stays 0.

So. The vendor is "Pirelli Broadband Solutions" the distance is about -65;

first i've tried with these commands:

airmon-ng start wlan0
airodump-ng mon0

airodump-ng -w wep -c [channel] --bssid [the bssid] mon0

CH 6 ][ Elapsed: x mins ][ 2012-10-13 19:25

BSSID PWR RXQ Beacons #Data, #/s CH MB ENC CIPHER AUTH ESSID

XX:XX:XX:XX:XX:XX 62 100 5240 0 338 6 54 WEP WEP Fashion

BSSID STATION PWR Lost Packets Probes
i was waiting about 30 mins. and still NO DATA!
--------------------------------------------------------------------------------------------------------------------
next method..

So I just installed Backtrack 5r3 gnome on Vmware Player. The problem is when I run BT on it ,it is unable to connect to the Internet (although I am already connect to the internet on Windows 7 host).I am using Bridged option from Vmware Player's Network options.Please tell me what to do :eek:

I also run Ubuntu 12.04 on Vmware but there is no such problem in connecting to internet with it.

I use Huawei e1732 dongle to connect to net.Hoping that you will help me :)

Hello BackTrack Community.
A few days ago I tried to clone a website but it was unsuccessful.
First thing is that every time I type "ifconfig" it shows me "inet addr:10.0.2.15" and when I watch videos, most of people using BackTrack, when they type "ifconfig" in their Terminal, their "inet addr:" starts with 168.. and so on.
Secondly, when I start cloning I get to the message :
" IP address for the POST back in Harvester/Tabnabbing: "
I've watched a Tutorial about cloning and I putted my inet addr which is - > 10.0.2.15
" Enter the url to clone : ( here I type ) http://www.facebook.com "
Everything is going on well. Website is now cloned.
My problem is :
After website is cloned, I minimize the VB and open Mozilla Firefox on my Windows 7. I try to open the cloned server with the inet addr which is 10.0.2.15 but the page wont load. I tried to open it from the VB and worked on Firefox, I logged in with a fake email and password but it didn't displayed anything, just showed that someone connected to it :
" 10.0.2.15 - - [17/Oct/2012 13:11:39] "GET / HTTP/1.1" 200 - "
Waiting for your assistance.

I have the above card and it didn't work out of the box in 5r3. The fix was very simple (adding a file to /lib/firmware). Can this be added to the main distribution, as well as maybe the other ones on that page?

I was wondering if anyone knew the reason or how to bypass the fact that the --essid option in airbase-ng doesnt let you choose a essid with spaces in it. IE : a essid 'HelloYou' would work while 'Hello You' wouldnt. This suprises me because with the -P option airbase-ng is clearly able to fake essids with spaces in them. Just wont let you create a particular one.

I am using Backtrack 5 r5, and have no wireless card access. I am reasonably comfortable with a command line, but don't really understand the driver issues in Linux, and especially this whole "patched" drivers issue, so would appreciate if someone could help me beyond "use driver X and install and configure it as usual"

Output of various commands that I saw was requested in similar threads (I don't know what most of it means. If anyone cares to enlighten me I would appreciate it)

lspci
Code:
02:00.0 Network controller: Intel Corporation Device 0887 (rev c4)
lspci -vvs 02:00.0
Code:
Subsystem: Intel Corporation Device 4462
...
Kernel modules: iwlwifi
iwconfig
Code:
lo no wireless extensions
eth0 no wireless extensions
ifup wlan0
Code:
...No such device...
Also, I had previously installed Linux Mint 13, and the wireless worked out-of-the-box. Can I copy the drivers from that installation to this one? If so, where are are they and what do I do other then copy them? Will they work with aircrack-ng?

Looking at the wiki page for wireless is not very helpful, as it just contains a lot of codes that mean nothing to me (do I need mac or ieee drivers? What is rt2800 anyway? It just says "if you need driver type X, do this...") The compat-wireless option sounded like it may be what I am looking for (or may not be...), but the instructions there are outdated. (I managed to find the updated compat-wireless download link, but not the updated link for Backtrack patches mentioned there)

I downloaded and installed linux backtrack 5 r3 yesterday. The only way I have to get on the internet at my house is through a US Cellular Air Card, so I was wondering if somebody could help me get all the drivers installed so I can use it for internet support with backtrack 5 r3.

Code:
apt-get remove fern-wifi-cracker
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages will be REMOVED:
fern-wifi-cracker
0 upgraded, o newly installed, 1 to remove and 0 not upgraded
After this operation, 3,514 kb disk space will be freed.
Continue (y/n) y
(Reading database ... 268007 files and directories currently installed.)
Removing fern-wifi-cracker ...
dpkg (subprocess): unable to execute installed pre-removal script: Exec format error
dpkg: error processing fern-wifi-cracker (--remove):
subprocess installed pre-removal script returned error exit status 2
Errors were encountered while processing: fern-wifi-cracker
E: Sub-process /usr/bin/dpkg returned an error code (1)After this i installed synaptic and want to try remove with a GUI. Fern was marked for a update, i try this but:
Code:
An error occured
E:/var/cache/apt/archives/fern-wifi-cracker_1.6-bt0_all.deb: there is no script in the new version of the package - giving up.Details from synaptic are the same:

Code:
dpkg (subprocess): unable to execute installed pre-removal script: Exec format error
dpkg: warning: old pre-removal script returned error exit status 2
dpkg - trying script from the new package instead ...
dpkg: error processing /var/cache/apt/archives/fern-wifi-cracker_1.6-bt0_all.deb (--unpack):
there is no script in the new version of the package - giving up.
Errors were encountered while processing: /var/cache/apt/archives/fern-wifi-cracker_1.6-bt0_all.deb
E: Sub-process /usr/bin/dpkg returned an error code (1)
A package failed to install. Trying to recover.
Now i want to erase what is coming with fern-wifi-cracker...because, actually i can´t use it no "monitor mode"...
Hope u can help me a bit, alternate it can displaced to Beginner-Section, because i am a Beginner in Linux and Bash

Thank for all information about this Problem.
Regards
dataminer

If this solved i will install correctly the stuff and learning more about this...synaptic will help me, and i will learn!

Hi all! I'm new to Backtrack, so I made a Live DVD to install it. I downloaded Backtrack 5 R3 KDE 32bit and want to install it beside Windows XP SP3. When I get to the partition section of the setup, I select the first option and the hit "forward." These are the 2 errors I get:PIC_0015.jpgPIC_0016.jpg
After that, it sends me to the manual disk partitioner. I don't wnat to mess anything up, so I haven't tried anything yet. Thanks in advance!!

Meybe someone know for 'Social Enginering Toolkit' so when i start 'SET' and try to clone page it show's me (see in attachment)
So what to type in:
~Ip addres for the POST back in Harvester/Tabnabbing ~

On the tutorials that does not show , what to do?

Meybe is because i 'update' it , tut's are from 2012 jun/march...Screenshot.jpg
Immagini allegate

Wasn't sure if this was the correct forum section... I'm not a <i>total</i> nub, and I hope this isnt just a general LQ, though it may be.

I also wasn't sure if this was something other people had experienced. I will attempt to be as detailed as possible here. It really isnt a <i>problem</i> per se, more of an <i>inconvenience</i> really.

I was running Win7x64 and BTr3GNOMEx64 on the same machine. They were on different (SATA) hard drives, with entirely separate boot loaders. (just used the mobo's boot menu to select which HDD i wanted to boot. dont hate. ;P)

five drives installed, four SATA one PATA. All connected directly to the mobo's onboard connectors.

The mobo was using RAID configuration for the SATA drives (PATA is perma-set IDE obvi) and was set this way when BT5r3 was installed.

The only SATA drives that were in a RAID group were the two 320GB disks, forming the "RAID-0 array 1" my Windows 7 OS was installed to. This was the case when BT5r3 was installed.

Ok, done with overview! hah, nitty gritty time...

I recently decided to move Win7 to a single disk. I took an image of the disk with paragon, removed the array 1 group, then put the mobo's settings in the bios to AHCI. After that, just put the image on one of the single drives, and to my immense surprise Win7 booted right up no problems. "Whoa, no way.... easy-peasy.."

I then booted into BT, selecting it's disk from the boot menu as I normally did. After everything was done booting, I went to find my SATA drive I use for storage and... nothing. In the 'places' menu, I found nothing but the 250GB PATA drive I have in a hotswap enclosure (plugged into mobo's IDE). Previously, when the mobo was still using the RAID settings not AHCI, I could access (read/write) all connected HDDs. That includes the RAID-0 array of Win7.

Thinking that it probably had to do with something like non-compatible drivers, i pulled up a terminal and issued the fdisk -l command. The results from that command showed all of my disks correctly, partitions and all. So i then attempted to mount disks, then individual partitions - no dice. I stopped short of an attempt to manually insert them into the associated /etc/*/* tab. I figured I would look for other solutions/answers/voodoo before I went screwing stuff up big time.

I havent tried it at time of post, but i imagine if I set the motherboard back to RAID rather than AHCI I would have access to the disks. Since that was the setting they were originally installed and working with. Is there a different way? Such as modifying how the BT kernel anticipates the HDD bus settings, or loads the drivers? Is that even something that 'drivers' handle in ubuntu? If so, sorry for the LQ.. lmao

(Its not a huge deal, but i do a lot of rebooting. That 30-45 seconds of RAID bios screen after POST gets irritating... lol)

I appreciate the input guys! I do a lot of browsing on this forum for info, I understand how irritating it must be for remedials, such as myself, to come and bother the rocket-scientists about what 1+1 equals. ;P

I apologize if the answers to the questions below are viewed as common knowledge; much of the information i have already found (although it was not in a straightforward manner). I merely want to verify :)

Is the ARM edition of BT5 native?

Will BT5 run from an SDHC card on an exynos 4412 ARM Cortex A9 processor?

Should I expect to have a limited selected of drivers/packages? I wouldn't imagine traditional x86/x64 packages to run on an ARM kernel, but wanted to verify.

I specifically wanted to run BT5 on an Odroid-x dev board. It has the cpu noted above, think I should have any issues?

For sniffing decrypted SSL traffic, SSLstrip works very well in conjunction with Ettercap.

This only works however when the user's web browser requests the web page over port 80 (i.e. as normal HTTP), and then SSLstrip deals with encryption keys and changing the destination port to 443.

What doesn't work, however, is when the user's web browser requests HTTPS (for example if the user were to type in "https://facebook.com").

The other alternative of doing a MITM attack with a forged certificate would result in the user seeing an "Untrusted Website" dialogue, which may be too noisey depending on the pentester's client's naivety.

Humour me for a second. Try something.

Clear your web browser history/cache/etc. Now type "facebook.com" into the address bar. You'll see that it uses normal HTTP over port 80. No surprises there because you didn't explicitly specify port 443 by typing https://facebook.com(and also http://facebook.comdoesn't send back a message demanding HTTPS).

Now close that tab in your browser and this time type in "https://facebook.com" and hit return. Of course this time it uses HTTPS over port 443 as expected. No surprises there.

Now close that tab. Without deleting any cache/history, open up a new tab and simply type in "facebook.com". All browsers I've tested this on will immediately choose HTTPS over HTTP because that's what's been used in the past.

So my question is, from the pentester's point of view, is there any way of redirecting the user's web browser calls from HTTPS (port 443) to HTTP (port 80)? The most the user would get would be "You are now leaving an unencrypted connection" which isn't an uncommon message when dealing with sites like online banking, nowhere near as alarming as the Untrusted Connection dialogue you get with doing MITM and forged SSL certs.

To achieve what I'm trying to achieve, I forsee that it would work something like:
(1) The user types "https://facebook.com" into their web browser.
(2) This HTTP request to port 443 gets redirected (possibly by iptables) to some sort of program which will redirect the request to "http://facebook" (i.e. HTTP over port 80). The user might be presented with a not-too-intrusive dialogue saying "You're now leaving an encrypted connection", nothing major.
(3) The user's web browser then makes a normal HTTP request over port 80 to "facebook.com".
(4) From here, the usual SSLstrip and Ettercap does its job.

Has this been achieved? If so, please advise me how to go about it. I presume iptables would be used in conjunction with another program to perform a redirect from HTTPS to HTTP? If someone could write out a line-by-line explanation of how this would achieved, I'd be greatly appreciative.

I'm sure there are a hundred ways to do this setup but very simply, my desktop is a very decent 2 monitor setup running 11.10 desktop and i want to load up two or so Virtualbox distro's and park them in my second monitor to create a network ( desktop is hooked via eth0 to my wireless router ) and i would like to be able to access these machines for testing etc with my laptop running bt5. Never had to network before so im not all to sure what im doing here and it seems to me there must be a simple way to do this so i can work from my laptop over the wifi and access the homemade riged up network. Do i need to run server for this or can i virtual network it and how do i get past my router. Yes i have turned off firewall, im not connected to the internet when doing this and i've taken off the wep security. no go. Any help would be awesome. I did also install bt5 on a dual boot with my desktop just in case but i think cracking the router and messing with my network will be much better from the laptop. thanks for any advice.

I'm sure there are a hundred ways to do this setup but very simply, my desktop is a very decent 2 monitor setup running 11.10 desktop and i want to load up two or so Virtualbox distro's and park them in my second monitor to create a network ( desktop is hooked via eth0 to my wireless router ) and i would like to be able to access these machines for testing etc with my laptop running bt5. Never had to network before so im not all to sure what im doing here and it seems to me there must be a simple way to do this so i can work from my laptop over the wifi and access the homemade riged up network. Do i need to run server for this or can i virtual network it and how do i get past my router. Yes i have turned off firewall, im not connected to the internet when doing this and i've taken off the wep security. no go. Any help would be awesome. I did also install bt5 on a dual boot with my desktop just in case but i think cracking the router and messing with my network will be much better from the laptop. thanks for any advice.

Installed BT5-R3 and installed NVIDIA drive and got "no screens" error. I have been trying to work on this myself for the past 2 weeks, and have not been able to resolve it, so I need some help. I have searched, read, and tried everything I could find, with no luck. From what I have gathered I guess it may have to do with intel and NVIDIA together? I tried some things that fixed others issues, but did not work for me.

Intel(R) Core(TM) i5-2410M CPU @2.3GHz

NVIDIA GeForce GT 540M
Intel(R) HD Graphics Family

I didn't copy info from log, but did from the main error screen. I am just in the middle of work while switched over to Windows 7 on the same computer. Just thought I would post this up first in case someone had any new ideas to try. Will come back and post log, when I get a break.

Installed BT5-R3 and installed NVIDIA drive and got "no screens" error. I have been trying to work on this myself for the past 2 weeks, and have not been able to resolve it, so I need some help. I have searched, read, and tried everything I could find, with no luck. From what I have gathered I guess it may have to do with intel and NVIDIA together? I tried some things that fixed others issues, but did not work for me.

Intel(R) Core(TM) i5-2410M CPU @2.3GHz

NVIDIA GeForce GT 540M
Intel(R) HD Graphics Family

I didn't copy info from log, but did from the main error screen. I am just in the middle of work while switched over to Windows 7 on the same computer. Just thought I would post this up first in case someone had any new ideas to try. Will come back and post log, when I get a break.

hi guys:)
in this ""simple-video-test"" (i think unnecessary ) I wanted to try the difference "in speed" of the tool cRARk (Not-default-install in my BT5-R3)
with && without CUDA-support. nothing new!!

I have installed BT5r3 on my laptop, installed bumblebee etc and am really happy with the setup so far, however I have an issue with the resolution in KDE. it keeps reverting to 1368 x 768 after a reboot. I keep setting it to 1366 x 768 (Max res of my screen) and all is fine till I reboot. is there anywhere I can manually set this. I tried looking for the xorg.conf file but that didnt help.

I am new on this, basically I have a mac computer with a vm runnin bactrack 5 R3, and the victim my macbook pro, I have a Alfa AWUS036NH wireless card for the backtrack vm, basically using that card I connected to my wireless, started ettercap (ettercap -G), select wlan0, scanned for hosts find my AP ip address and the victim, my macbook connected to the internet using its internal wireless card, then I add the targets and finally mitm start ARP poisoning I select sniff remote connections, then I try to create traffic using my macbook and I do not have internet connection. What can I do to solve this?

I recently installed Backtrack 5 (non-revised version) 32-bit on my HP Pavilion a6030n. Everything installed fine, but it is having trouble connecting to the internet. It sees the network but does not go to websites in Firefox. Am I missing a driver? If so, where could I find it?

As the title says, is there a tablet that runs backtrack better than any others? Or is the ARM version of BT5 still to unstable for real day to day use? I see that some users have gotten it so work on several devices with varying degrees of success. I'm mostly interested in using nmap and wireshark (maybe aircrack). I'm eyeing the Acer Iconia since it has a USB host and would be suitable for running a USB wifi card. Any suggestions would be appreciated.

Trying to install virt-manager to easy my work in KVM.
However, upon using virt-manager (installation succeeds..) it says that i need libvirt-bin which can not be installed due to the lack of netcat-openbsd (which from my understanding is just another version of netcat-traditional but without the "backdoor").

Is there an easy fix for this in BT or am i just doomed to not using virt-man in BT?
Was thinking of creating some sort of symlink/pipe from nc but i'm not sure where to start in all this mess.

I'm hoping a kind soul can help out. Just trying to install the driver for my usb wifi adapter. It's a Rosewill RNX-N150HG. I've read the manufactuer's readme and searched forums without any luck. I've found several others with the same problem for other Rosewill products, but folks can't seem to find a working solution.

The issue is getting wpa_supplicant installed. After extracting the tarball and running make, I get the following warning:

WARNING: Symbol version dump /usr/src/linux-source-3.2.6/Module.symvers is missing; modules will have no dependencies and modversions.

As the make continues, there are many warnings in files /include/osdep_service.h and /include/wifi.h "cast to point from integer of different size", and "cast from pointer to integer of different size".

Then it sees linux/smp_lock.h is not found. Followed by Error 1 from /cmd/rtl871x_cmd.o

Hi, I'm using metasploit on bt5r3 everything is working fine...
I'm was just thinking about would the "metasploit browser autopwn" still function if I used a no ip account and just forwarded the port on my router to my internal IP address... does anyone now?

I have tried searching for a solution for days with no result. I am running virtualbox with backtrack on win7 host. A couple of days ago i had everything working and all was fine, until i tried bridging to an ethernet adapter. Now when i bridge to my wireless adapter, there is no inet address on guests eth0 (ethernet does not work either). I have also disabled the firewall. Sorry about the confusing explanation, I have included outputs to ipconfig+ifconfig and some screenshots. Thank you for your help.

I have a desktop running bt5 r3 and a laptop running bt5 r3. Im switching the usb adapter for my laptop because the integrated wifi card is not supported by bt5. The wireless usb adapter works very well with speed on the desktop but it runs extremly slow and disconnects quite often on the laptop. However the same os and same adapter runs well on the desktop. Is it a possiblity that it runs slow and disconnects on the laptop because the integrated adapter is interfering with the usb? the laptop is dual booted with windows and even then works well with the wifi adapter. Do i have to disable the integrated wifi card in order to get it from disconnecting? and if I disable it can I still use the wifi integrated card for windows?

After i updated my metasploit to 4.5, every time i start armitage, i've got error and armitage wont add any hosts and the whole framework has not functions ( eg. can't receive any connections from victim).

Hi, I am a webmaster and planning to migrate from Windows to Backtrack but have some doubts on the functionality of Bactrack. I personally used "Pardus" linux distro for years but don't know if it is such easy to use Backtrack?. So I want to learn;

Is it easy for a beginner to;
1.Create a local server for testing some php pages
2.Create and manage MySQL databases
3.Use graphical design tools for a website design
by using Backtrack?

I have the adapter working on the 3.2.6 kernel. It gets a strong connection and goes into monitor mode. I haven't been able to get injection working yet. There are a couple steps to get it up and running but is was easy. I posted how here: http://www.backtrack-linux.org/forum...ad.php?t=53474

Hi where can i find the linux headers for "Linux localhost 3.0.31-204919 #1 SMP PREEMPT Fri Sep 21 21:52:00 KST 2012 armv7l GNU/Linux"
Code:
root@localhost:/usr/src# apt-get install linux-headers
Reading package lists... Done
Building dependency tree
Reading state information... Done
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you are using the unstable
distribution that some required packages have not yet been created
or been moved out of Incoming.
The following information may help to resolve the situation:

I wasn't sure if this was the appropriate place for this thread but figured I could find a few experienced members on this topic. If the mods feel like there is a better place for it please let me know.

I have been searching for encryption tools to securely and privately communicate with people around the world via the internet and smartphones. What I am specifically looking for is encrypted instant messaging, VOIP and smartphone apps that would allow two users to privately exchange text and data across the globe. Since most of these people live in oppressed countries, I would need something that is preferably open source and could provide strong encryption (Like AES 256, ZTRP and etc) to reduce the risk of being exposed by the government.

I have found several options on google but was wondering if anyone has experience using tools like these and suggestions for possible approaches. Also how vulnerable are these tools to attacks and what are the chances of them being cracked if the government would want to listen in or monitor the communications?

what it does it automates some everyday exploiting tasks allowing you to do a few things very quickly:

1) Create a wireless access point (airbase-ng) with specific ESSID, channel and other options WITH the option to route traffic from the virtual interface to another interface. This combined with (ip_forward) and the integration of (isc-)dhcp-server turns Sapphire into a - real access point! Basically a one line command to share your network to other people around.

2) Now the functionality of number 1) is probably implemented by someone somewhere already but wait, there's more! Sapphire has built-in DNS server so you can easily enable DNS spoofing on your newly created AP. No need to edit hosts file to mix up your own connections. The sapphire.dns file will hold the A records you wish to spoof and it can be updated realtime. Yes, Ettercap can already do this, but afaik it cannot redirect network reliably (it turns off ip_forward) and your DNS queries are actually only sent to Sapphire so no need to "send spoofed packets faster" than any real DNS server around. It is also more lightweight and doesn't need additional third party dns spoofing plugins (like ettercap) be present on the system.

3) Still not impressed? Well Sapphire can also work as an HTTP server. You can select the directory you wish the HTTP server to be run in (where you have your cloned websites) and maybe combine DNS spoofing with this attack. Or you can use the iptables routing function also implemented in Sapphire. This could also be achieved with SET but Sapphire is more lightweight and allows you to work with the index files. So you can custom edit your site to best fit your needs.

4) Other options include (if you have macchanger) mac cloning, so you can clone mac address for your wlan0 and mon0 should you not want to show your permanent MAC to the public.

It's written in Python so it's quite portable a wrapper program for all these different functionalities. With Sapphire and in one command you can basically:

*) Steal an existing ESSID and
*) Set up an access point that routes internet traffic and steals the clients of the AP making them connect to your computer instead (need to be closer to them than the AP though)
*) Send poisoned DNS replies to make connecting clients see whatever you want
*) Set up an HTTP server (to steal their credentials - ha!)

I hope you find it useful! :) I personally like it because it removes all the fuzz of working with .conf files and separate shells from the equation setting up everything automatically.

I'm trying to test my router against an authentication DoS attack with mdk3, I use mdk3 mon0 a -t "target MAC" and it works ok for a while but then it says "Trying to get a new target AP" and then it switches to another AP thats in my range...... and how can I know if my AP can handle it? besides checking with another computer to see if I get internet connection?
Also i tried the m mode of mdk3 and it didnt do anything, my router works perfectly fine and I get internet connecction, whats up with that mode?

UPDATE: I kept trying with other tools too and I noticed aireplay-ng cant fake authenticate with my router, and its not a problem of a wireless card because I tried fake Authenticating on a cyber cafe network and it worked(relax I didnt do any hacking on it, just wanted to test to make sure its not a card problem), also on mdk3 mon0 a -i "Target AP" I see that the clients he keeps creating dont authenticate or associate.....

Well I tried the "a -t" mode and now it connects the clients one by one instead of 500 everytime like before even if i use only "a", whats up with that?

At present there doesn't seem to be any official or third party "full" support for the Intel HD3000, I managed to modify the grub file to get a native resolution. However if you try to use compiz or extra effects the system crashes, anyone had any other luck?

I have used previous releases of Backtrack in the past, and have installed Backtrack 5 R1 on a laptop about 6 months ago. Now I have decided to
make the leap to installing Backtrack on my desktop and dual booting with windows 7. However I'm having trouble getting to the point where i can actually
install the distro!

I boot the live CD and wait for Backtrack to do its thing, and my problem arises after entering the "startx" command to enter the KDE gui. As soon as i enter the command my screen turns black, and the monitor
goes to sleep as it cannot find a signal.

i have tried following multiple guides on this forum, and across the internetz but none have worked so far :( all that i can find seem to involve changing the grub kernel commands, to something similar to "i915.modeset=1".
However my desktop is an AMD machine, with a ATI Radeon HD 5830 and doesn't use a single piece of intel hardware? So i don't believe that fix applies to this issue.

I have also tried many of the Backtrack 5 R2 forum fixes for black screen and these do not work either... Can anyone shed some light on this problem? I'm sure its a video driver problem or something similar, but sadly i'm no Linux
expert (yet!) and have come to a dead end in terms of my knowledge.

The file boots perfectly on vitualbox, so it cannot be a corrupt file etc.

Hi everyone, I would've said hello in the sticky, but I doubt anyone reads them.
I recently downloaded the VM edition of BT5R3 Gnome, and it is working spangly, but I wanted (to test my 1337 skills), to set up a LAN consisting of: BT VM, XP VM, and an Ubuntu VM, all for testing exploits and such. Is there a way to (VMWare Workstation 8) setup a LAN with the three VM's, and cut off from the host?
I am a little paranoid about mistaking the VM for my actual system, and want to prevent any mishaps.

I do have computer knowledge, albeit in different fields, so please don't patronize me, you wouldn't like it.

I also have another question, but as it is not strictly allowed in this forum, I don't know how it will fare. I have a 250gb USB _thumb drive._ It is not {flagged/set up/built} as an external hard drive (shitty manufacturer), ergo it causes some problems. I believe these issues (can't be formatted properly), are due to the fact that they are not meant to be so big, but I may be wrong. All the same, I would like to use it for backtrack, to boot on multiple MacBooks. I need it to be partitioned with the GUID Partition Table, as Mac OS X will not recognize it otherwise. I have also been told that I need FAT32 for backtrack, but 250gb is too big a volume for FAT32 to format.

Is there a workaround/alternate solution?

Hacking, *ahem* penetration testing, has always been a dream of mine, since I played Uplink, and right through to the point where I realized there is a hackingOS (sarcasm in 3, 2, 1). And now, it is a possibility. This is not some childish endeavor, and I do have the aptitude, and really want to make this happen, but for what I have planned, I need a bootable persistent USB, which can boot macs.

I downloaded Bactrack 5 R3 , installed it via the the http://www.backtrack-linux.org/wiki/..._USB_Installer
however when I load up from the usb - it goes through everything then comes up with a black screen (with a lot of writing on it) and just says root> (like in command prompt) .

Also tried doing it via universal usb installer - still the same - absolute no go .

Any help ?

Im running windows 7 64 bit downloading the ISO and following the steps to the "."

Firstly can I dial a range of any worldwide International numbers like country codes +44, +555 or is it only limited to +1 only.
2. Can the digits be more than 10? like 11 or 12 digits.. Can this also apply to the caller ID number range.
3. Will I be charged by my VOIP providers for 2-3 second rings? or just on connect.

If WarVox cannot do the above..What Autodialer can?
P.S..I am not interested in looking for PBX's or SIP's only the 2-3 second miss call feature..Thank you.

So, it's been a few weeks that I have been looking all over, read tons of forum post from either Linux websites, Ubuntu, or here (BT) community. I also spoke to 2 of my professors in IT. I am resorting to posting to this website for help, couldn't fix it.

So I have a Dell XPS 14 ultrabook.
I'd like to install Backtrack 5 R3 (KDE or GNOME 64) as a dual boot on my laptop.

The issue I have is that when I open the Installation from my liveCD (that I burned), backtrack doesn't recognize my hard drive or partition!
However, using sudo fdisk -l
the liveCD recognize my hard drive.
I think it is due to my XPS being on RAID0.

I would like to know what is the fix to a RAID machine to install Backtrack 5, I can provide any hardware information if you guys need some more.

I read on some Ubuntu 10.04 LTS support forum that that version had an issue with RAID configured machines to install through Ubiquity etc.. :

"Each Ubuntu release has had it own quirks with regards to installing on a raid. The 10.04 desktop release does come with dmraid which allows you to access your raid (apparently '/dev/mapper/isw_chibcceegh_Volume0'). The quirks are 1)that gparted run from 10.04 will not work on a raid partition and the partitioning step of the installation will fail 2) that the installer will try to install the grub boot loader to /dev/sda and that if this is one of your raid drives, that will fail.

The workarounds I have used are to:

1) pre-format (ext2, ext3 or ext4, it doesn't matter) the target partition with an earlier version of Ubuntu, either installed or live cd. The catch is that you must have dmraid installed or install it. This can be done to a live cd session if you have internet capability - gparted will not see the raid or its partitions unless the raid drives are activated by dmraid.

To install dmraid in a terminal - Code:

Quote:
sudo apt-get install dmraid
To activate the raid - Code:

Quote:
sudo dmraid -ay
You now can start gparted (System>Administration>Gparted or Partition Disks depending on the version your running from) and select an unallocated space to create your target sized as you want it - or resize an existing partition to give you unallocated space in which to create your partition in. You will also have to create a swap partition if there is not already one present. We probably don't have to address it here, but if you already have two or more partitions on this array, you should create additional partitions in an extended partition (you are currently limited to four total primary partitions including an extended partition on any drive). Note the name of this partition. Once your pre-formated partitions is created on the raid you can boot into your 10.04 live cd.

At this point you pick the desktop icon to start the installation of 10.04. When you reach step 4 of 7 you will pick the option to manually specify the partition you have previously formatted to install to. When step 5 of 8 appears, select your partition and click 'change' at the bottom of the window. In the box select the format from the drop box choices (probably ext3 or ext4, same as what you previously formated). Do NOT check to format. In the next drop down select '/' - the mount point you file system is to be installed to.

2) To hopefully handle the 2nd quirk, at step 8 of 8 you will click on the box labeled 'Advanced'. At this point you should be able to select the top array name (the name representing the entire array, not one of the partitions) from a drop box. After this you have done everything you can do. You can click next and you system will be setup on the chosen partition. I have just run into the problem in Mint where this was not adequate. The installer still tried to install to sda and resulted in a 'fatal failure'. If this happens don't despair - it can still be fixed. Just continue to install without the boot loader. I will have to research the specific steps and get back to you on this if we have to address it.

As you can tell, raid in Ubuntu is not for the faint hearted or under informed. It is doable. You will have to do some learning along the way. If you are going to try and stick with it, I or others will be able to help along the way."

Should I install an older version of Ubuntu and follow the instructions above? or anyone as a different fix for these issues! I tried using a flash usb, a Virtual Machine installation, a liveCD etc... nothing worked, Backtrack installer never "sees" my Hard Drive.

Ok i downloaded bactrack 5r3 gnome 64bit iso have redownloded 3 times checksum good all 3 times instaleed to usb 6 times with unetbootin and 6 times with live linux creater with variouse persistance sizes the first time i boot it up startx works just fine but as soon as i reboot and try to startx again it hangs at black screen search as revield this is a common problem but none of the fixes seem to help first i tried to edit /etc/default/grub to include i915.modeset=1 as sugested both at the end of the line right before vga= begining of the line and changing text splash to quiet splash but when i run update-grub it says that it cant find /mnt/dev am i sure its mounted
On the grub loader hiting tab and modifing that line with several varations of the i915 line with no luck also xforcevesa does nothing i also tried reistalling iso and booting up starting x (it always works first time after reeboot it breaks) and configuring fluxbox with no luck hopeing it was a gnome prolem i am useing a hp laptop with intel chipset sorry for the crappy formating i am havring to post this on my phone and its being stupid thanks in advance ffor all the help

Hi everyone!
Can you please help to disable those annoying animations that appear when an application is launched, i.e. when clicking on Firefox the Firefox icon is bouncing just below the mouse cursor.
Ah I forgot to say that I'm using Backtrack 5 R3
Thanks!!!

So I set up my AP with MAC filtering and I used macchanger on my laptop to spoof it to the MAC adress i authorized and then tried to connect with the Wicd network manager and It doesnt connect! it gets stuck on obtaining IP and after a while it says "Cant get an IP".
I set the AP with only MAC filtering no password.

hello i upgrade backtrack5 in ubuntu with Linux 3.2.0-32-generic packages and its cant login default username and password i don't know why.and i don't know what is default username and password.plz help me.

Here's my problem.
What I've done lately by following a tutorial describing " How to install BackTrack 5 R3 on Windows 7 using Virtual Box "
1. Downloaded & installed Virtual Box
2. Downloaded BackTrack 5 R3 KDE x86
3. I configured a new Virtual Machine Box and started it. Everything was running perfectly. I got it to this :Without the "Installation complete" message, just ignore it like it doesn't exists
4. I ran the "Install BackTrack" .exe file but I suddenly saw that by default it install on Local Disk "C". On my Local Disk C:, I've got only 33 free GB out of 74 GB and I know it needs at least 30-40 GB for full installation.
My problem is : While installing, running out of disk space on "C:"
My question : Is there a way to install the program on my Local Disk "D:" where I currently have 200+ GB free disk space and if so, how?

I want to be able to use CUDA, so I need the nvidia driver right? How can I install it?
Can someone spare some time helping me to fix this? Cause event on R1 and R2 some months ago I tried install the NVIDIA driver, and always after that I can't startx and need to reinstall BT :\

My notebook have NVIDIA Optimus technology, so maybe that's making me having trouble?
As far as I know, this technology makes my computer decide when to use the intel graphic card, or the nvidia graphic card.

I am sniffing on my super hub router with my Alfa network (chipset RTL8187) and using Backtrack 5 dual boot.
I have yet to see http packets in wireshark, only SSDP and ARP packets and even when I try ettercap -G (etter config edited) I only see TCP packets.
I have put my wireless on monitor mode and tried with and without Mon0 yet I see no useful packets.
I have also tried driftnet and I see no images. Dsniff, ARPspoof and SSLstrip yet again I see nada.

Hello everyone,
I'm new to BT and I'm trying to install it alongside Windows 7 on my HP G72 laptop. I put BT5R3 on a USB flash drive using "Universal USB Installer" (torrented the ISO from the website, didn't use the one in the drop-down menu). It boots, but when I enter "startx" the screen goes black and nothing happens except the Caps Lock light blinks constantly. I left it alone for two hours and nothing happened other than that. The laptop seemed to be doing something; the fan was running and it was fairly warm. Any ideas how to fix this? I used the same ISO on a VirtualBox machine and it worked, but it can't do anything with the wireless card from within the virtual machine.

I've downloaded the bt5r3-gnome-64.iso 4 times, 3 from the main site, once via torrent, and each time when I try to verify the md5 hash, it fails with a simple message, "md5sum: BT5R3-GNOME-64.iso: Input/output error". Trying md5sum on other iso images I've downloaded works fine. If I ignore the error, and burn a dvd it burns (depending on what I use to burn it), but when I but I can't boot from it (as one would expect).

Since I can download, verify and burn other isos without issue, I'm guessing something might be wrong with this particular iso. Is someone one able to verify that they have had success with it?

Does anybody tried to install LORCON / Airbase package into BTr3. If so did you succeeded?

I'm reading the something related to Wireless and they have an examples using pcap2air which can be found only as part of the Airbase package.

I've tried the following steps from here:

"Installing pcap2air and other airbase tools for wifi

To work with airbase wifi tools we need to have lorcon.
Lorcon is a bookshop specializing in frame insertion for 802.11 (Wi-Fi standard) and is on suite that supports the Airbase. The suite is created in C + + and is formed by applications, Airware-test, fuzz-e pcap2air,pcap-match, pcap-tac, pcap-wepcrypt, prism-strip simple-replay.

Currently, some programs use functions Airbase Lorcon bookstores that are considered obsolete (Deprecated).We'll see how to modify the code to fit the new libraries.

./src/pcap-packet.cpp:249: error: exit was not declared in this scope
./src/pcap-packet.cpp:266: error: exit was not declared in this scope
./src/pcap-packet.cpp: In member function pcap_pkthdr Pcap_Packet::get_pcap_hdr():
./src/pcap-packet.cpp:275: warning: deprecated conversion from string constant to char*
./src/pcap-packet.cpp: In member function void Pcap_Packet::check_initialized(char*):
./src/pcap-packet.cpp:298: error: exit was not declared in this scope
make: *** [pcap-packet.o] Error 1

It seems that everyone has a problem with this particular card. I have recently bought it and having a problem with it. it doesn't show the interface when issuing the command airmon-ng. Also i couldn't connect to the internet through this card.

I am running backtrack 5 R3 on Hdd ( side by side with windows prof 7 ). When booting and choosing Backtrack to boot, it boots normally if the card is not connected, However, if the card is connected it it gives me this error ( unable to enumerate USB device on port 2 ) once i unplug the card it boots normally and i get access the backtrack.

after reconnecting it after booting, I issued the command airmon-ng it doesn't show anything but ( Interface Chipset Driver )

also it might help addressing the problem, when i issue the command iwconfig it shows me 3 interfaces:

Hi, I am sorry if I am posting in wrong section, it's my 1st post here and been using linux only a week. I was using crunch for the past few days and all was fine 'til I found this glitch and do not know how to solve this. It only happens when I need the split files. I have also figured out the -e is the culprit, it always works without the endstring. Thanks for your help

I was reading a post earlier, but I didn't bookmark it, and can't find it any more. The post suggested I press "e" at the "grub menu." But if I press "e" at the menu that comes up for me, nothing happens. Therefor, I can't follow the rest of those instructions - I wrote them on a piece of paper... the instructions are to press e at the grub menu, go to line with "kernal/boot/umlinux-..." at that menu press "e" again, see /boot/umlinunz-2.6...root=/dev/sdax" or the uuid, at the end you see a "ro" - change to "rw" then add (leaving a psace after the rw): "init=/bin/bash" press enter then type b at the menu. Will boot, at prompt type passwd & enter. Reboot.

Like I say though, not sure what a grub menu is... or how to get to it.

And again, main goal is to get the correct login info. By whatever means. Not sure if I should just try a reinstall or what.

I have a laptop with a Broadcom 801.11/n and Back-Track doesn't recognize it. I also installed pockey.gtk and it doesn't find anyway. However while i was searching for the solution i've found some commands and i noticed this:

when update wpscan to the latest version,i get this error:
Code:
root@bt:/usr/bin# ruby /pentest/web/wpscan2/wpscan.rb
[ERROR] no such file to load -- nokogiri

Nokogiri needs some packets, please run 'sudo apt-get install libxml2 libxml2-dev libxslt1-dev' to install them. Then run the command below

[TIP] Try to run 'gem install nokogiri' or 'gem install --user-install nokogiri'. If you still get an error, Please see README file or https://github.com/wpscanteam/wpscan
but the mokogiri is allready installed:
Code:
root@bt:/usr/bin# gem list

Installed my Linksys WPC54G v2 wireless adapter card with no wired internet connection. With Ubuntu 12.04 I had to install two extra pkgs, Lubuntu 12.04 I lost count after 20 and gave up. With BackTrack 5 I only had to install:
ndiswrapper-common
ndiswrapper-utils
dkms
ndiswrapper-dkms
ndisgtk

I used the ndisgtk graphical front end to install my drivers .INF file. Once installed my card lite right up, without the extra terminal commands that where required with the Ubuntu 12.04. I liiike it!
I liked the package installer as well. It seemed a lot easier and quicker than using a terminal. No it's time to see about updating and upgrading.

Hi,
Is there any command for pausing the airolib-ng from importing passwords to the dictionary and also save the state so as I can continue later?
I'm waiting almost 48 hours for importing a 4GB dictionary and I want the laptop to do some break!

Hello guys
I purchased a brand new Lap Top Asus zenbook Prime, and I tried to install Backtrack 5 r3 on in it but i couldn't,
My problem was I Boot thru a flash drive because the lap doesn't have a dvd-rom, so on the boot screen option i had 2 option for flash drive
First was UEFI mode flash drive
Second was regular travel mode flash drive
I tried to UEFI, but i couldn't load the backtrack
Then I tried the second option wich loaded but erased my original windows, i don't worry about windows, and didn't install it.
Then I download UBUNTU 12.04 i had the same flash drive option UEFI and regular i tried UEFI and was fine loaded and installed fine, but i wanna backtrack
So if any body went thru the same issue please help me

Hi guys!
I have motivated myself to join the Linux World, but every begining has its games ;)
I installed BT5r3. I used to access the internet through WiMAX 4G USB Modem.
My Question is how to start it? There is no CD with tools etc. The device is not found by BT.
Thanks :)

E: Some index files failed to download. They have been ignored, or old ones used instead.
2. Errors with apt-get upgrade. Probably because of the problems with the sources libraries.

Code:
root@bt:~# apt-get upgrade
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
1 not fully installed or removed.
After this operation, 0 B of additional disk space will be used.
Do you want to continue [Y/n]?
dpkg: warning: parsing file '/var/lib/dpkg/status' near line 7553 package 'magictree':
error in Version string 'r1643-bt0': version number does not start with digit
dpkg: warning: parsing file '/var/lib/dpkg/status' near line 20998 package 'udptunnel':
error in Version string 'r19-bt0': version number does not start with digit
dpkg: warning: parsing file '/var/lib/dpkg/status' near line 26646 package 'untidy':
error in Version string 'beta2-bt1': version number does not start with digit
dpkg: warning: parsing file '/var/lib/dpkg/status' near line 30113 package 'pwntcha':
error in Version string 'rev4780-bt3': version number does not start with digit
dpkg: warning: parsing file '/var/lib/dpkg/status' near line 35565 package 'android-sdk':
error in Version string 'r20.0.1-bt0': version number does not start with digit
dpkg: warning: parsing file '/var/lib/dpkg/status' near line 49775 package 'webslayer':
error in Version string 'rev5-bt0': version number does not start with digit
dpkg: warning: parsing file '/var/lib/dpkg/status' near line 55248 package 'wifite':
error in Version string 'r85-bt1': version number does not start with digit
dpkg: warning: parsing file '/var/lib/dpkg/status' near line 55786 package 'protos-sip':
error in Version string 'r2-bt1': version number does not start with digit
Setting up ruby1.8 (1.8.7.352-2ubuntu1.1) ...
update-alternatives: error: alternative rdoc can't be slave of ruby: it is a master alternative.
dpkg: error processing ruby1.8 (--configure):
subprocess installed post-installation script returned error exit status 2
Errors were encountered while processing:
ruby1.8
E: Sub-process /usr/bin/dpkg returned an error code (1)
I have been trying several things, but can find something to repair this. So any help is appreciated.

this could be a man in the middle style exploit, if a client on the network is surfing websites looking for executable files to download, this proxy can modify the binary data on the fly...

its just proof of concept... i never finished it because i became overwhelmed with the amount of work needed just to build a stable proxy that can handle all kinds of traffic, ftp, ssh, http, https etc...

Proxy source
pastebin.com/n7AHi5Ny
i now understand that i need to build a proxy framework that can handle each protocal then the exploits will come later but i need help doing this...

Starting some days ago when I run a regular "msfupdate" in my BT5R3 I get the following errors:

# msfupdate[*][*] Attempting to update the Metasploit Framework...[*]

svn: /opt/metasploit/common/lib/libssl.so.0.9.8: no version information available (required by /opt/metasploit/common/lib/libserf-0.so.0)
svn: /opt/metasploit/common/lib/libcrypto.so.0.9.8: no version information available (required by /opt/metasploit/common/lib/libserf-0.so.0)
svn: /opt/metasploit/common/lib/libssl.so.0.9.8: no version information available (required by /opt/metasploit/common/lib/libserf-0.so.0)
svn: /opt/metasploit/common/lib/libcrypto.so.0.9.8: no version information available (required by /opt/metasploit/common/lib/libserf-0.so.0)svn: OPTIONS of 'https://www.metasploit.com/svn/framework3/trunk': Server certificate verification failed: issuer is not trusted (https://www.metasploit.com)
#

What bothers me is the line above that says "Server certificate verification failed...".

Has anybody else seen this - and what can I do to get the "msfupdate"s flowing again?

I thought some of you may find this nifty little Reaver tool helpful, basically you type in how your seconds per pin rate, and what % complete the attack is, the user is then presented with the MAXIMUM time it will take Reaver to crack the pin, it has a countdown timer built in, http://pastehtml.com/view/cek96ydvv.html

Hi everyone, I got injected a lot of web pages like
PHP Code:
index.php?id=1
before, but when the thing is more complex like
PHP Code:
index.php?main_page=index'%22&cPath=11
I got a lot of error and I do not know why because it seems to be injectable :(
I would like to know if is possible, does sqlmap recognize this kind of "special" characters on the link?
I also tried by type " at the end and beggining but unsuccesfully. I also read the recipe guide (READ ME) of the sqlmap but also without answer.

Yeah, I find this pretty strange, I try toggling between both preshared key and 1/2, still doesn't work. I don't know whats wrong? I can connect to the hidden WPA network perfectly fine on my PC, but for some reason, this thing thinks that I have a bad password. I am very frustrated with this.
Does anyone know what to do?

I can successfully connect to my bt5 with vnc. eg. myip:1
However the bottom of the vnc window, where all the minimized programs , clock etc is fuzzy or not showing very clearly. (as best I can describe it.)
I have tried a variety of methods for setting up vnc and this seems to work accept for the fuzzy bar.

When I minimize a terminal window I cant seem to open it. I try clicking along the fuzzy bar to try to catch it and I can get the clock for example or programs like the list all the programs, but I cant get the termnal window to re open. If I hover my mouse over one of the 4 Desktops eg Desktop1 then I see a list of all the terminal windows that are open. Including the one I cant open.

Is there some command or something that will allow me to open a minimized window. Alt tab doesnt always work depending on the variety of VNC your using.
thanks.

Now, BT5 boot screen is coming up and there are no errors, but it freezes at a certain point:
Quote:
[3.768444] usb 2-1.2 new high speed USB device using ehci_hcd and address 3
after that it doesn't go on, cursor blinks, and you can type in anything.

Anyone an idea, what could be the problem?
What information do you need?

I installed BT R3 64-Bit Gnome in VMWare environment. When I try to run "apt-get update" command, I do not get any error and it hits some repositories as well. Then I execute "apt-get upgrade" and the result is always (i.e. in the last 2 months) "0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded." Is this normal? I do expect that some updates exist sometimes within repositories? I did install synaptic. Could it crash some configurations?

Sorry if this is tl;dr, but I thought I'd detail everything I'm doing to expose any potential mistakes I might be making:
I take my hard drive out of my laptop, boot up 32 bit Backtrack5r3 and install tor in the following way:

Eventually firefox displays "The proxy server is refusing connections" and the computer itself goes slow. So the only way I can use socks5 is by entering the credentials into firefox without tor. Proxychains does not work with tor + socks or just with socks.
If you can identify the problem here, I would greatly appreciate it, thanks.

Im having issues using airodump-ng with my rtl8192ce driver with r3 release. The problem is that every station shown is not associated with any BSSID. Instead i only get a "(not associated)" text. And i noticed that im not able to catch handshakes either.

I didn't have any of these problems with the r1 release. Any suggestions ?

Hello All,
I am fairly new to linux and backtrack, I have backtrack loaded to my usb flash drive and I am booting from that drive, I used unetbootin and that has all worked just fine. I am having difficulty getting BT to recognize my wireless network card. Unfortunately I am not home right now so I am unable to post the parameters when I type thing like iwconfig and the other commands in. I was up for about 4 hours last night trying to install the different drivers, I downloaded one .deb driver and one .tgz driver, neither of which seemed to work when I used the dpkg command line.. The only thing I can think of is could it be not working because I am using the USB to run BT and not installing it to the machine? Maybe I have to put the driver file on the same usb flashdisk as the BT5 is on? Last night I was using a second usb flashdisk to download files on my desktop and bring them over to the laptop. Any input is greatly appreciated, I know theres not much you guys can do without me posting specifics but as I've said I am at work now, don't have access to the computer at this time, just thought I could get this posted this way when I get home I can provide you all with whatever information you may need. What I do know, for sure is
1. It is BT5r3 loaded to a usb flashdisk using unetbootin
2. It is a dell inspiron 8600 laptop with a Intel Pro Wireless 2915abg adapter
3. I have downloaded and attempted to install 2 different driver files ending in .deb and .tgz, neither of which with any success.

I am currently trying to teach myself how to Penetration Test and I have a question regarding the use encryption wrappers to slip under Intrusion Prevention/Detection Systems. I have seen mentioned somewhere that stunnel can be used to effectivley hide any traffic from being picked up by an IPS.

However, I can only seem to find an installer .exe for stunnel. Is there a single .exe that I can just file transfer into the system32 folder on the target machine? Or is a remote install required? If so, could someone point me in the right direction for me to learn how to do this?

Is stunnel even the way to go? Is there a better way to circumvent IPS to obtain a shell?

After trying everything I found in other threads here I can't get the correct graphics driver working. Everything I tried didn't lead to goal.
I think the main problem is the nouveau kernel module which seems not to be able to uninstall or blacklist.
Latest steps I tried:
Code:
#apt-get install linux-headers-$(uname -r)
#apt-get install build-essential
#added following in /etc/modprobe.d/blacklist.conf
blacklist vga16fb
blacklist nouveau
blacklist rivafb
blacklist nvidiafb
rivatv
#edited /boot/grub/grub.cfg
text splash nouveau.modeset=0 vga=791
#update-grub
#apt-get --purge remove nvidia-*
#apt-get --purge remove xserver-xorg-video-nouveau
#./NVIDIA-Linux-x86_64-295.59.run
The installation seems to finished correctly... After reboot and startx I get an error that no screens were found.

I get this black screen after pressing startx i have tried to set it to modeset1 but it never worked can any of you explain this i am new to back tracks also i need security for my dedicated server and home network thanks.

I've got a fresh image of BT5R3-GNOME-32-VM running in VMWare Player 5.0.0 build-812388 on a 32-bit Windows XP SP3 machine.

It's preloaded with VMWare tools (and I've tested and found copy/paste and all that working), I've enabled video acceleration in the virtual machine in VMWare Player, but when start X and go to System->Preferences->Appearance->Visual Effects they're all grayed out as if I'm missing a video driver.

I am using BT5 in VirtualBox on my Win7 laptop, and would like to bridge/forward my wifi to my ethernet port (so my 2nd device works as if it is plugged directly into the router) and perform some tests using tcpdump, tc, etc. I need this to work within a VM rather than livebooting as I will be utilizing some Win7 features simultaneously.

Code:
Setup:

[Win7 Laptop]
| |
[BT5 VM]
| |
[eth0]--[eth1]
| |
[WiFi] [Ethernet Port]
| |
[Internet] [Device 2]
Within my VM, I've tried using "brctl" to form a bridge (br0), but I lose internet connectivity every time I add eth0 to br0. I've also tried using iptables to forward eth0 to eth1 however I do not know that I am doing this correctly. This is what I have tried so far (separately):

After some consideration, I decided to install Backtrack 5 R3 on my spare hard drive. I was able to boot via the live dvd, enter bt5, and install bt5 on my external hard drive(was a full format then clean install). After restarting, I changed my bios settings to read the external hard drive first, it went through the HP splash screen and then hung on a black screen. I can alt ctrl del to restart my computer but it always hangs on a black screen. I then decided to open up my computer and plug my external hard drive straight into my computer, and sure enough I was able to boot into Backtrack. I tried doing some research for BlacX sata station and dual booting and the only thing I could find was something about AHCI being enabled in the bios(which I set and still did nothing). On a side note, I can't boot into windows with my BlacX turned on. If I try to hangs on a black screen if I do.

I was impressed with the improvements in signal and number of APs it found. I have one major problem and that is the throughput speed. I connected to my router and was able to achieve a download speed of 1-2mbps! My internet speed is around 18mbps and I can achieve this easily with an older Edimax USB adaptor. Browsing websites is painstakingly slow and sometimes fails to load pages with the AWUS036H!

I connected to my brothers router which is 2 house apart and connected with full bars but the internet problem was same as above.

I tried using a USB splitter cable, used the drivers on the CD, Windows update and even drivers from Realtek's website, none of this helped.

After setting up some VM's (Win7x64, WinXP SP3, Debian Lenny, DVWA, Badstore Online Shop, Windows Server 2003) in VMWare I started
scanning the WinXP box (with SP3 but without latest updates). When I turn off the Windows firewall Nessus shows me a lot of vulnerabilities and
I am able to play around with metasploit and connect to the box. With firewall on I only can see that IP forwarding is enabled. NMap only shows me
that the 1000 scanned ports are filtered and OS detection also doesn't work properly.
I'm wondering if it is possible to bypass an active Windows firewall by taking advantage of IP forwarding or other methods to search for vulnerabilities.
I've been looking around for good papers or threads for hours but there was nothing useful to find.

I had quite a surprise opening fine the BT5R3-GNOME-32-VM.zip other a 64bit 12.04 Ubuntu and hitting a wall other my 32bit 12.04 Ubuntu laptop.
It displays "End of central directory signature not found" with unzip under linux, that it's only a part of a multipart archive other windows vista and 7 32bit, winrar and windows's extractor.
I checked the archive against it's md5 bca6d3862c661b615a374d7ef61252c5. It was not that.

More surprising when I came back to my 64bit desktop, loading the BTR3 32bit VM I installed file-roller which manages to see the files inside the zip but cannot unzip it o_O

Full error message :
Code:
Archive: BT5R3-GNOME-32-VM.zip
End-of-central-directory signature not found. Either this file is not
a zipfile, or it constitutes one disk of a multi-part archive. In the
latter case the central directory and zipfile comment will be found on
the last disk(s) of this archive.
note: BT5R3-GNOME-32-VM.zip may be a plain executable, not an archive
unzip: cannot find zipfile directory in one of BT5R3-GNOME-32-VM.zip or
BT5R3-GNOME-32-VM.zip.zip, and cannot find BT5R3-GNOME-32-VM.zip.ZIP, period.

hi all,
I am using a bt5 install on a laptop HDD partition.
I am trying to encode an executable using the msfencode command . I used the following syntax :-
Code:
./msfencode -t exe -x trojan.exe -k -o trojan_enc.exe -e x86/shikata_ga_nai -c 1
However, shikata_ga_nai first indicates it succeeded and then aborts saying .text section is too small to be usable :confused:
I have seen a tutorial about extending the pe file sections and could add the bytes to the last section of the pe file. But as I understand, I
have to add the extra bytes to the .text section, which is the first section in the section table and that means I have to relocate the other sections.
I couldnot succeed doing that! So can someone help me on extending the .text section of an exe and thus overcome the msfencode problem indicated above ?
thanks in advance
bye

hello, i have a problem ... i had windows 7 than i installed backtrack 5r3 into a cd. when i was using backtrack i installed it to do a dual boot... when i restarted my pc it didn't give me an option, it when right into backtrack ... i lost my windows 7 :(. is there a way that i can restore my pc so i can get windows 7 back?

In my situation, my vulnerable parameter is Referer in the HTTP headers. I am able to enumerate the username and database name manually, but can someone explain or point me to an article that gives details about sqlmap and time-based with mysql? Here is an example of how I was able to enumerate the name. I'm unsure if there's any "custom" way of getting sqlmap work with this.

Code:
GET /vulnwebapp/index.php?id=2 HTTP/1.1
Host: 192.168.127.133
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1229.79 Safari/537.4
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Referer: '+IF(SUBSTRING(USER(),1,1)='r',SLEEP(5),1)+'
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
FYI, I'm testing this on a vulnerable web app hosted by myself. So with the above request, the page sleeps because the first character of the current username is "r", which eventually allows me to change 1,1 to 2,1 and so forth until I figure out that the username is "root."

Ive just ordered a Nexus 7 but a little worried now. The Nexus 7 doesnt have an sd card slot but i have come across a blog where the poster has managed to install BT5 arm on (No details metioned but a screenshot).

If anybody knows or if anybody has done it, is it going to cause me any problems trying to get BT5 on?

Thanks in advance for any replies, i' ll wait until this vodka sinks in ...

I have a 2009 Sony Viao VGN-FZ140E computer. Which had windows 7 32 bit installed on it.
I burned a live cd of BackTrack5 and booted from it. From the startx window I used the icon on the desktop to install it to my computer. It did not see my copy of windows on the install (yes this might have clued me in there would be a problem).

So then when booting from the HD it would bring up BT5 and it worked fine.
I used bt5 to get some work done, and then had no way to boot back into windows.

I found a post related to this mistake which gave some info about booting from the livecd and using gparted to remove /dev/sda1
But this copy of the cd does not include it. Also I do not know how to get the wifi to work from the bt5 cd (though I know it works, and I have the ssid and key), and I have no cable ethernet access.

I got a windows 7 ultimate 32bit disc and tried to run the windows repair tool. It said that my computer did not have win7 ultimate installed. So now I am unsure of the former version of win 7, but whatever I can start over with the CD I have...

I then tried to install a fresh copy of windows. When it gave me the options to select a partition there were 3 options. None of which would it let me install windows on them. They all had an error which mentioned the drive not being NTFS or being in the GPT format. It would only let me delete the partition with BT5 on it. Which I seem to have done.
The Win7 install would begin to format a drive partition, but never bring up a bar, then after a few seconds would act like I had not clicked on the radio button to do so.

So like I said I think I deleted the bt5 partition, when booting from the HD I get:
error:unknown file system
grub rescue>

I burned a cd of the program Boot-Repair-Disc
and booted it. It wants connection to the internet, to update itself (which I can't seem to make happen).
But it eventually returns the following information:
Boot info Summary
-->Grub2 (v1.97-1.98) is installed in the MBR of /dev/sda and looks at sector 2048 of the same hard drive for core.img. core.img is at this location and looks in partition 2 for /boot/grub.

mount points:
device mount-point type options
/dev/sr0 /live/image iso9660 (ro,noatime)
The program gives me this info in a text file and says it has made no changes to my computer.

I am not sure as to what to do from here. I would use another computer normally to format the drive. But I have just moved to Europe from California for 9 months and I only have access to a macbook pro or the pc's at the local web cafe (locutorio). I would like a working system on windows 7, any advice that would help me make that happen would be greatly appreciated.

Booting up R3 from a hdd install seems to hang several minutes. The message it gives is "configuring networking" and after that "taking up to 60 seconds ...". So itś a good guess that something is going on with networking. I've been trying to find a way through logfiles etc. to find out what exactly is happening, but cannot find it. Can anyone point me a step further?

Mine is a green board, not blue, and has "WN517GP" printed on it. Upon searching I found that the manufacturer claims 500mw, not 1000mw. Using the r8187 driver, injection fails at everything above 250mw (24 dBm). I use the following commands to set it up (of course having tried higher txpower as mentioned):

Code:

dload-r8187
iwpriv wlan0 highpower 1
iwconfig wlan0 txpower 24

Am I missing something, or has newfrog pulled a bait and switch? I'm otherwise happy with the card but this issue bugs me.

EDIT:
For anyone else with this issue, I managed to fix the problem by starting networking after loading the r8187 driver, and full "txpower 30" works for injection. Not sure why this is necessary since monitor mode and injection work fine without doing so at "txpower 24".

Ok so i am working on a project and i have gotten to many last real hang up...i need to embed a vbs script into a file so that when the file is opened the script is executed... how would i go about doing this?

I just started to use backtrack a couple of days ago and this is my 1st time that I am using a non windows OS.
I searched around the forum to find answers to my question but noticed that many people had problems and since I am not experienced with Linux I would really appreciate if someone who knows how to do this helps me out

I have booted BT on USB with unetbootin, working fine so far.
I am using the newest BT5R3-GNOME-32 version. I would like to install BT but I dont want to put it on my internal hard drive not to compromise my windows installation.
I have a 1 TB external hard drive and I would like to install BT on it. I am not really using it for anything so I can use the entire thing.

Can someone please give my detailed instructions on how to do this, preferably if you have done it yourself? What i need to pay attention to and all that. and what I shouldnt do under any circumstances?
I am new to linux but i want to learn so please have patience with me.
I really dont want to mess up my windows installation, since I have important data there.

Hi,
I have a little issue. Well when i try to install BlackTrack into my laptop it just stops. This happen and with others distribution wich one are built on new kernel version. I don't it will help or not, but i put the link of photo where show error messenger http://s12.postimage.org/c9wr8k9fx/I...006_151850.jpg.

I have a Sony Vaio VGN-FZ140E from 2009. It had windows 7 installed on it.
I burned Back Track 5 to a cd and booted from it. ran startx, I then installed BT5 on my harddrive from the link on the desktop of BT5.
during the install it did not notice my other OS. (this should have tipped me off as a problem but I am used to linux and windows ignoring each other. so I let it install.)
So now my computer would only boot into BT5 and not windows. So I got some things done with BT5 and I am ready to try to fix windows to boot again.

first I found some advice about running gparted and removing /dev/sd1 with the live CD version of BT5.
but gparted is not included in this installtion, and I could not get the internet to connect to download it.

So I got a copy of the Windows 7 ultimate DVD. It would not repair the computer as it said it was a different version of the OS than what was installed. I thought that was my OS.
So I told it to install a new copy. It would not, as all 3 partitions were not NTFS but GPT now. So I tried to delete all 3 partitions so that I could start over. It would only delete the partition with bt5 on it. (so now it won't boot either, if I let the drive boot it shows :
error: unknown file system
grub rescue>

I tried to format the drive using the win7 install disc but it would not do that either. (Not like I want to loose my old system. As it's not fully backed up. But I figured I had no choice.)

So then I downloaded a program called Boot-repair-disc. which I burned and ran.
first it complains it needs the internet. Which I can't seem to make happen. after it runs, it gives me text file with no instrucions, and says no changes have been made to my computer.

things it tells me:
Grub 2 (v1.97-1.98) is installed in the MBR of /dev /sda and looks at sector 2048 of the same hard drive for core.img. core.img is at this location and looks in partition 2 for boot/grub

I humbly request any information that might help me get my system back. I have just moved to Europe from my home in California and I am without any of my other computers to help me solve the problem... or I would just connect the drive to a desktop and format it.
thanks in advance if anyone can give detailed instructions on how to fix my system.
-CDRCheshire

I'm in the process of attempting to exploit a SQLi vulnerability detected by Nessus scanner on a web application I've downloaded. Before getting flamed, I just want to say that I've spent countless hours doing tons of research and studied many training materials but I've never run across this situation. In this particular case, the SQLi vulnerability is actually in the HTTP Headers (Referrer). However, what's weird to me is that a single quote (') is the ONLY thing that triggers an MySQL_num_rows() error. Tried many blind sqli techniques and even some time-based from learning resources, but it seems like nothing has an effect other than putting a single quote (which only generates a mysql_numrows() error), or even if I add 3, 5, etc.

I was under the impression that if you installed an OS to a USB removable drive (like a thumb drive) that you could save you files, and changes to the os --- However mine is working like a Live bootable DVD.

Is there anyway to install backtrack to a usb stick, and make changes to the OS (change the background for example) and the next time you boot, the changes are still there??

cant get BackTrack 5 R3 GNOME 32 or 64 to do anything on my laptop using UNetbootin USB Installer im using a 8gb Patriot flash drive on a lenovo g575 laptop with amd radeon hd 6310 graphics, i put this flash drive in my desktop worked fine, can someone point me to the next step of what to do im stuck.

when i put this flash drive to the desktop it came up with a blue screen and lets you chose something to boot backtrack but i dont get that with the laptop, just getting a sentence with a blinking line, have typed root then press enter then toor enter nothing happens

I have BT5R3 installed on a flash drive and the first day I used to to crack my WEP connection. Everything was working normally.

Now every time I try to do the same thing, during the "attacking" part it takes AGES to get packets. So long that I can't stand to watch it go up so I just leave. But when I come back the fern wifi cracker window is just gone. I assume that it just closes.

I've tried it a couple more times and the same thing happens. Extremely slow cracking speed and it just closes sometime in the process. Does anybody know whats going on?

ps:The video quality after about 2 minutes it becomes "really-bad"is because of my stubbornness to the function (clip-speed) ... I'm a turtle-g0at-brain..... Sorry for some confusion! &
Sorry if you understand a little!
bye!

Hi there,
I have searched the forum, before posting. There is no similar thread.
I have gone through the forum and made a list of inexpensive knockoff wifi adaptors that people are using. I'm not able to make out which one is the most preferred now.
Hope this will help others to choose one as per there requirement.

2.https://www.dealextreme.com/p/2000mw...-antenna-41934
It has the longest antenna among all. It uses RTL8187 and has a maximum range of 2-3 kms as claimed by people.
Downside of antenna - As per the reviews, it is 1000mw actually and antenna is 5-8 dbi rather than 10dbi, base can't support the antenna. Few complained that the antenna is not of good quality and they used other antennas like this one, this one and this one.
I'm quite sure, people are buying this, as the last review is dated 7/23/2012.
Price : 17.90$

Hi,
I log into Back track linux today and the whole thing has changed for no reason. The Back track linux logo screen comes up and everything appears nornmal untill the desktop comes up. Don't know why but Gnome desktop comes up now and back track linux desktop has dissapeard for some reason. When I try to create a new doc and open it right away, so I can write down everything going on " Aircrack comes up stright away" instead and can't access txt doc at all. I have'nt installed anything new lately. Has anyone else had a simular situation. What would be the best way to get back track desktop back? Never seen this issue before

First of all, the basic Nouveau drivers detected the card but hardly worked. The startx GUI ran at fullscreen quite smoothly, BUT it didn't utilise it at all for anything more than to run the monitor in full resolution.. No nice graphical options or wobbly windows or anything cool....

I had to disable Nouveau and install the downloaded x64 Linux Nvidia driver (from Nvidia.com)..

Boot into recovery mode and select the last option in the list... Disable Nouveau, then run the nvidia_________.run from there too.... Reboot, start as normal.. Then enjoy snow and wobbly windows and other cool effects :D

(P.s. Only been using Linux for 3 days.. So appologies For the lack of jargon... Although in all fairness, I'm a master at copy/paste-fu and "not reinventing the wheel" now :P ...)
(P.P.s. Havent added any definite commands or actions because
--a/ I'm new, and I didn't trust copying code etc from people with 1 post....
--b/ I don't get blamed for anything :D )

Hey im new to backtrack I'm learning about it for school
but when i try and install Bt5 through a USB i get this, http://imgur.com/IOqmE i currently have windows installed that i still need on their
is their anything wrong, i attempted to install it on another computer and that showed the operating system, but not on mine any solutions to install them "side by side"

Hello, let me start off by saying i am new to backtrack, and i have scoured the entire forum and google and have not found anything closely related to my issue. I installed backtrack 5r2 on a VMware machine and had no issues logging in and connecting the networking and downloading plugins, but i was prompted to install a new package, which took a couple hours. After which point i was prompted to restart the system. Then i logged in with the root /and my updated password, then i used startx (hoping to get back to the main backtrack screen) but was sent to another login screen that is grey in color with a box in the middle of the screen with an area for a username and password. I tried using the root/and my new password, but it says root logins are not allowed. I have not been able to get back to the main backtrack screen since. I have uploaded a couple screen shots of the screen i am seeing. Any help would be greatly appreciated.screen.jpgscreen 2.jpg
Immagini allegate

Please I need to download the Backtrack 5 repository to use it in localy, since I don't have internet conection, but a friend of mine will help me to download it. I try with debmirror but I dont know how to configure it since I cant see the content of the repository at the URL: all.repository.backtrack-linux.org. Somebody can help me on how to configure o make an script to use debmirror for download the repo.
Sorry for my English...Thanks you

I'm posting this in the experts section because I have pretty much exhausted every link I have found on google regarding this topic, and I'd like some of the most experienced eyes on the problem, because something obscure must be going on.

Problem description
The problem is that while I'm running wlan0 in monitor mode, I only see broadcast packets (I see ARPs, DHCP transactions, beacons, and other random management and data packets that are being broadcast or multicast). This is the case in kismet, wireshark 1.2.x, 1.4.x, and 1.8.x, and my own packet reader program that uses libpcap. The clients that I have set up running pings and http traffic are connected to an open wireless g network. The computer I am sniffing from is not connected to any network.

Procedure
I have tested more configurations than I can list, but I'll try to give a good idea of what I've done.

The USB wireless card I listed (Alfa AWUS036H) is using the rtl8187 driver. Relevant commands and their outputs are listed below:

wlan0 RTL8187 rtl8187 - [phy5]
(monitor mode enabled on mon0)
When using iwconfig, I can verify wlan0 is in monitor mode:

Code:
wlan0 IEEE 802.11bg Mode:Monitor Frequency:2.437 GHz Tx-Power=27 dBm
Retry long limit:7 RTS thr:off Fragment thr:off
Power Management:off
When I use iwconfig to put the card into monitor mode manually, I use the interface wlan0 in wireshark and kismet. When using airmon-ng to create a mon0 interface that is in monitor mode, I use mon0.

In both cases, I get the same result: kismet and wireshark will see all the broadcast packets from the APs around me, but never any ICMP or HTTP traffic I'm creating from other clients in order to test.

I am not associated or authenticated to any AP. I did this a few months ago at a workshop and it worked great; we saw tons of HTTP traffic flying around.

For most of the same type of questions asked here, the problem had to do with them being associated to a network or that they were on an encrypted network and weren't entering the key properly. I cannot find any issue with the setup or the device. Any ideas? Thanks for any help.

Dear all of you because I am having trouble force ssh
impossible for them to operate according to
run hydra list ip.txt, list pass.txt, user.txt thared and ssh speed scan, can any one share me the file includes activities and programs run command
thanks all black TR5

I'm running Backtrack 5 R3 on my HDD, not in an VM.
I'm using an Lenovo G780, including a Broadcom 802.11n Network Adapther for Wireless and an Atheros AR8162/8166/8188 for wired connection, but noone of them is working at all.

It's strange, sometimes, after i reinstalled Backtrack 5 R3, it finds my wireless network, sometimes not. When it finds it, the signal is very bad, and if I want to connect using my
password it sais "Connection failed, bad password".

I install BT5R3 on persistent usb 8g, everything is ok , i can access to any partitions on my Harddisk (500G) in BT5R3. However, when I changed default root pass "toor" and i can not access on those partitions anyway, it display mount error existed 21. Could someone help me to fix it ?

I have had backtrack 5 for over a year now and I am still really new to this all, I didn't go crazy into learning everything until last week, but I am having a problem scanning with nmap when I scan It always comes back saying host down when I know the host is up. it advises me to use -Pn for a "stealth scan" so I do and it sends out about 2108 packets and gives me back about 16 is that normal? It doesn't give me the OS of the system or anything Im so confused.

Newbie on the forums here! I have worked with sequential security for about 5 years now and just got third partied for a company that is a social network platform. When I am testing credential harvesting my inet is working fine but im having an issue with bringing the credentials back. The only reason I am asking this questions is because the company wanted me to use the SET automated program because they are partnered with me metasploit which ive used mainly for phishing. I am doing a credential harvester like I said yet the program is giving me the adress when I test and not the credentials. Any information would be greatly appreciated.

I am always wondering if any of these tutorials we can find in internet would not harm the wireless card or prevent some OS like Windows Vista to use properly the Wireless Card, for example if i changed the mode to monitor mode, and then i rebooted my computer to use WIndows Vista, will it detect that the mode is monitor and not a managed mode ?

Hello, im writing this because yesterday i installed Back Track 5 to my SANDISK Cruzer 8GB USB with Lili, it was working perfectly (exept the Wifi wich wouldnt start) anyway after i failed miserably i went to sleep.

ddxSigGiveup Closing Log
giving up
xinit no such file or directory errno2 unable to connect to X server
xinit no such process errno3 server error
I Decided to go to safe mode to see if it worked, what surprised me is that it worked perfectly, even better than the first time i booted it, and i even was able to have the wifi card working in seconds after installing the firmware (i spent 4 hours browsing the internet unsuccesfully before that trying to make it work)

My main problem is that i CANT reinstall bt5 currently to the usb, for some complex reasons.
Am i stuck on Debug mode? (i dont really mind that much tought) or is there a way to fix it?
And if i am, can i make it so that the backtrack options menu wont appear anymore and just go directly to backtrack debug - safe mode?

I am relatively new to Linux, I used Suse back in the day of v8/9/10, RH, & Debian, but never stuck with it long enough to really learn anything, M$ makes life EZ. Yes, I know I have heard all before, im luzr lets move on.

Issue: I was using bt5, then bt5 r3. I have now rebuilt my box 3 times...this I am not learning from, and have hence spent 6 hours a day for more than a week working on this problem. Right now the default resolution is 800x500, or it was before I messed it up and can now only get cli. I don't need/want 3d or any of that that, but I do want all my fonts and graphics to be smaller, like the page where one changes the wallpaper runs completely off to the right or when I am running wireshark the gui runs completely off the bottom of the monitor. I believe I need the gma500 poulsbo drivers, could be wrong here, but when I...(see below)

/var/log/Xorg.0.log has quite a few errors(see below)
|-->Screen "Default Screen Section" (0)
/usr/share/fonts/X11/Cyrillic does not exist
/usr/share/fonts/X11/100dpi/ does not exist
/usr/share/fonts/X11/75dpi/ does not exist

Fatal server error: no screens found

I have since removed all the poulsbo commands too...
System details
Dell Inspirion mini 10, BT5r3, kernel 2.6.24-29-server i686, Lucid
I understand if the community berates me for this, I just don't want to reinstall bt again, that won't solve anything it will just get me to a system with bad res.

Okay here is the situation:
BT5R3 by default has the driver for this card and it's working but it's txpower is limited to 20dbm.
iw reg set BO
iwfconfig wlan1 txpower 27 for example sets the cards txpower to 27. *checked by iwconfig wlan1
BUT here is the PROBLEM, even when I do set it to 27 and even when it shows 27 it is still 20. No effect.
There are drivers on railink site which I have downloaded, but since i'm a newbie 4 linux systems i dont know how to install them. In windows I have 30% better reception than in linux due to good original tplink drivers.

If anyone knows how to install these drivers, plz respond. I followed many tutorials on internet but neither one of them is working.

I am brand spanking new to this site. I am a noob, but hopeing to change that. I have been doing some research all over the net on Back Track 5 and pentesting in general.
The reason for this is because I am going back to school starting January. I will be taking Computer Security and Investigations. I want to get a bit of a general idea of concepts, terminology and to just do some experimenting. I am in no way a Linux expert but I do have, what I consider to be a good foundation.

I have an old P4 desktop with 1gb of ram, an old toshiba satellite pentium centrino running 500mb of ram both running windows XP. I also have a newer HP laptop AMD athalon PII 340 dual core with 4gb of ram running Ubuntu. I have been reading about using VMplayer and running everything I need to start a pentest lab on one pc, but since I have this oldie but goodie equipment sitting around, I would like to setup a physical network instead of going virtual.

I have downloaded backtrack 5r3, and also the de-ice pentest cd 1. I would be very grateful and appreciative if I could get some feedback from you experienced members, and some guidance on setting up a pentest lab.

i want to install BACK TRACK 5 R3 in GNOME 32bit.
i receive error in %41 in install proccess.

"The installer encountered an error copying files to the hard disk:

[Errno 5] Input/output error

This is often due to a faulty CD/DVD disk or drive, or a faulty hard disk. It may help to clean the CD/DVD, to burn the CD/DVD at a lower speed, to clean the CD/DVD drive lens (cleaning kits are often available from electronics suppliers), to check whether the hard disk is old and in need of replacement, or to move the system to a cooler environment."

The problem :
The VGA screen driver 791 seems to fail. The screen turns black if I boot in this mode. "Unbuntu 10.0.4" then * black screen *

Pre-Solution :
I sucessfully entered into Backtrack5r3 when I edit the default launch option from "vga=791--" to "vga=0x315" in the grub.

Basically I fixed the problem but not entierly because I want a persistent copy on the Hardisk.

So here is the second problem, which I'm currently stuck at. With the R3 version of Bactrack I don't have acess to the grub once it's installed on hard-disk and it seems to install it with default settings (vga=791) so basically I'm stuck because when it boots, it load everything, no login, no startx requiered and no grub acess so I can't edit anything.

Questions :
1. Is it possible to modify the boot option before it launch startx automatically with a hotkey or something ?
2. If not, is it possible to modify the boot option from the ISO directly ?

Hello, the problem started when I ran "Apt-get install openoffice.org".
When I restarted my pc the Xserver loaded, but then it held like "loading" (With the click and clock) in the backtrack wallpeper, but the gnome never loaded.
I tried to open a terminal by the fastkey but nothing happened.

What Can I do? Thank you! and sorry for my bad english. I'm from Argentina
Bye!

I work as info sec analyst for my company. I'm testing the set tool provided in backtrack. The link for the tool is www.social-engineer.org

I'm trying to use its harvesting functionality to retrieve username and passwords. I'm running bt on vm machine and I'm behind a proxy server. I'm stuck soon after i tell set to use the given web-address to clone. It doesn't move from there; it says ' its preparing the website and it may take some time'. Under the config file i have set auto_detect=ON and when it ask for my ip address i give it as my eth0 interface ip.

Hi guys!
I'm currently studying programming & penetration testing,
I've long used linux and loved ever minute of it, but only recently really started taking a look at BackTrack
I'm in love so far and really hope to someday make a career out of Penetration Testing,
Anyway enough about me,

This here is the result of hours of trial and error/learning on my part during the better half of this morning on setting up various tolls in order to sniff SSL encrypted logins.

I've used Backtrack before. When it was ancient. Like version 2 or something, years and years ago.
I downloaded the x64 bit (KDE) copy. I really don't like GNOME.

Anyway, so formatted the USB with unetbootin. Also tried another time with Pendrive Linux Universal installer.

Every time no matter what option I select at boot, whether it's default, or safemode or anything, except boot to first disk.
The screen loads, the verbose text flies up the screen quickly and then the process stops dramatically by cutting to a glitched out image of the backtrack logo. No error message no nothing.

Any idea what's up? Any way to install video drivers or something with the bootup sequence? I can see that Backtrack doesn't support an 'install first' - 'customize after' option. It's more a 'live disk', then decide to install.

>>I did Scenario 3, 4, and 5 to confirm my theory. I think the problem is when I wake my wlan0 after I set it to monitor mode.<<

Other odd things that happen:
1. I can't see any AP (or any devices) when I run airodump-ng mon0.
2. Reaver doesn't seem to work either (but it worked only one time - see[*])

Facts about the intallation:
1. Booting from Flash Drives (live CD) or installing it directly (Dual Boot with Win7) has the same result.
2. I ran BT5 r2 last 3 months I think and I don't have this problem. airodump-ng see's AP's without problem and I cracked WEP keys so that must mean that my Adapter is compatible.
3. I tried those commands without starting startx but the same thing happens.
4. Reaver waits endlessly for the BSSID I provided, so I think it can't detect any AP's. But I can see them in the WICD GUI. Even airodump-ng doesn't see anything.
5.[*] There was one time that I booted using my Flash Drive (live CD) and inserted those commands without hanging and with airodump-ng and reaver working perfectly without hanging. But that was one time only, so I was baffled.
6. When it hangs, I have to restart forcibly (by holding the power button) since it doesn't respond for a very long time.
7. I have a laptop. Good specs. And as I said earlier, BT5 r2 worked for me with no problems last 3 months or so.

Am I missing something here? What could be the problem? I searched google and this forum for answers to no avail and so I posted it here. I am new to Backtrack but technical enough to understand terms and concepts. Any help will be greatly appreciated.

By the way:
1. I will try to upgrade to r3 and see if that solves the problem.
2. I will try to update everything and see if that solves the problem.

...i have bt5 r 2 installed on my pc along side ms win7. My backtrack just keeps freezing any time i launch gerix or any other application that comes with it. It puts the whole system on halt n at dat point i will need a hard restart to get it running smoothly again.

Hi,
Im running backtrack 5 inside vmware 9 and when i do a basic arpspoof attack , i lose the internet connectivity on my host operating system ( windows 7). I also lose the internet connectivity for BT5. Does this have something to do with the Vmware bridged adapter config or does it have something to do with the BT5 network config ?
Thanks in advance.

A few weeks ago I found a program (cant remember if it was included with BT5/R2) that was a dns spoofer/server.
It would let you specify a file of what spoofed results to reply with and then anything not in the list it would go off and give the real IP.

I can't seem to find that anymore...

I dont think it was 'dnsspoof' as that doesnt seem to answer with real IP's if you dont have the host in the file. I believe with dnsspoof you can do a wildcard but that replies with the server every time as oposed to the real IP.

Anyways if anyone has any ideas what this program was called that would be great :P

i have an old laptop and I decided to install Backtrack. So, i made a live usb of Bcktrack 5 r to explore it before install it permanently. The problem is that my wireless card is not working; it's not recognized.

I downloaded BT5 R3 and unetbootin. Then created Live USB using Silicon Power Touch T-01 8 GB UFD successfully using unetbootin. After changing (Aspire One 532h) BIOS' value to boot from usb flash drive, it boot but the boot process got stuck while the display is displayin "Intel Pineview..." something. Anybody here face same problem? Is my UFD not compatible for backtrack? What can i do to adress the problem? Please, help... And thanks in advance :)

PS:
I've waited for +/- 15 min and nothing happen. Just as it was ("Intel Pineview...")
Try couple of times format and create the live usb again on the same UFD, and still doesn't work.
English isn't my native language. Please forgive me for the miss typo...

Hello Every one ,
I have a probleme with my Graphic Card .. backtrack 5 r3 can't detect the graphic card and I can't get the 1600x900 resolution, so how to fixe this probleme? and this is My PC Version :http://www.mytek.tn/816-hp-pavilion-dv7-6c90sf.html
and its graphic card is :Graphique AMD Radeon HD 7690MXT (2Go dediée jusqu'à 5.22Go﻿﻿﻿)
(I saw the tutorial that say how to fixe Open.. and ATI graphic cards , and I did all steps but nothing is done )
thank you any way

I am new in using backtrack and when i read about it's incredible diversity of tools for penetration testing i decided to learn it and test it on two computers of mine
one inside of a network that running Backtrack 5 R3 through virtual machine by the VMware Workstation program and the other computer i want to test penetrating is on other network than the first one

after i hardly tried to connect the backtrack through bridged connection through the VMware workstation and give it specific internal ip address to replicate each time i connect the Internet through it and i test connection by Firefox that installed inside of the backtrack i could make it and serve the net ... i tried to use the tools with the backtrack to test the penetration which is my primary reason for installing this system

i encountered serious problems that i really in bad need for help and i hope the admins and anyone who read my post and have good experience in this system to help me as i searched a lot over the net till i reach this forum so i guess you it's the right place to ask for help

1- is my connection configuration i discussed above is correct or i have to place it on NAT mode ? and what is the best configuration for it ? and why ?

2- do i have to make any port forwarding and triggering or the backtrack able to access the remote computers easily ?

3-i have a wire connection to the net through dynamic ip router and when i tried to use metasploit and create the payload and give it LHOST as my dynamic ip it says it can't bind with the server and instead it binds with my internal ip and when i tried to use the link from the other remote PC it couldn't initiate a reverse TCP with the system ? so does anybody know how to fix the problem of dynamic ip or give me a payload that track any change in dns and dynamic ip?

4-how to bypass the anti-virus in my computer that running the backtrack and the one i testing because i found when i used the Java applet exploit for instance that the anti-virus detect the server and delete it immediately without giving me the chance to run it on the other comp test the penetration or imitate a reverse TCP with my other PC ?

Sorry to make it long and thank in advance for anyone will take the effort to help and answer my questions i really appreciate it and i hope to continue learning with your all efforts assisting me in my educational training through this linux systems

i followed to the letter the livecd instructions (checked md5 and burned), when i restart the dvd launches and gives the boot selector, i select default, it loads the CLI, when i write startx and press enter it goes black screen, dvd makes some noise and the screen just stays black (1 hour at least, i rebooted).

Thinking i burned the dvd wrong or something i followed to the letter the instructions for making a live usb, same thing, it loads all good until i hit startx screen goes black and stays black (for a few hours).

i did manage to burn livecds and live usb stick before and they usually work.

Hey boys,
i am not pretty sure if i can ask the question here but if ots not right i am sorry.

i want to use backtrack on my asus zenbook prime ux31a but i can't get my wifi adapter into the monitor mode.
it's an intel centrino 6235 and i can only change the mode if i disable wifi for the moment. in that time iwconfig says that the adapter is an monitor mode but when i enable wifi it change back to managed mode -.-

Just downloaded Backtrack 5R3 .It took 2 days.
Then afterwards I cant find the iso file while installing it in Vmware Player.
It turns into some folders.
Where is the iso image?
Please help me guys.I want to install it in vmware but cant find the iso image :'(

Please tell me how to install it in Vmware because I cant find the iso file. Or is there any other way of doing it? If yes please tell me.

I am running the latest and greatest bk trk 5 r3 along with updated fern wifi. I am using the VM version (from here and MD5 was confirmed) and running it from within VM player. I have not installed "tools" yet but I wouldn't think that is the problem.

I can see my AP/router and when I select the WPS attack it goes through the process of associating and everything looks fine. The trouble is the progress just sits on 0.00 and never moves. Hmmmmm??

I am using a AWUS036h and it has always worked fine on bktrk4. I can see tons of AP's but I am only interested in mine. It doesn't appear that fern wifi has customizable settings where I could attempt to "tweak" any parameters.

Other than manually typing all the commands on reaver every time, are there some thoughts that pop up in anyone's mind about this?

Suggestions or similar experiences? I have seen a few videos online and it appears that fern will run from within a VM but I'll ask to confirm from you folks. Does fern run well from within a VM using WPS attack mode??

Hey guys got an issue..My wireless works but eth0 is not seen by the network manager..is there a way to re-install network drivers and roll back to how it was as a fresh install because eth0 was working before..thnx

- Clean install of BT5 R3 64-bit
- I downloaded "rt2860.bin, rt2870.bin, rt3070.bin, rt3071.bin and rt3090.bin" from here -> "http://git.kernel.org/?p=linux/kernel/git/firmware/linux-firmware.git;a=tree" and copied the files to /lib/firmware
- I then download the latest compat-wireless and installed like this:

This is often due to a faulty CD/DVD disk or drive, or a faulty hard disk. It may help to clean the CD/DVD, to burn the CD/DVD at a lower speed, to clean the CD/DVD drive lens (cleaning kits are often available from electronics suppliers), to check whether the hard disk is old and in need of replacement, or to move the system to a cooler environment.

I'm using a crappy dell d800 and I have been trying to get a hard drive install to work with the display. I've tried blacklisting nouveau - then rmodding it... However, even the text based interface uses nouveau for display so it can not be removed while up and running on the hard drive...

Is there a process that anyone can explain to me to remove nouveau and replace it from a usb? Remastersys while running noDRM? Any help would be greatly appreciated. Thanks in advance!!!

I'm running BT5-R3. I'm trying to run hostapd, but I get the error "Could not set DTIM period for kernel driver" Several Google searches show that it's a known bug, and it's fixed in newer versions.

I downloaded hostapd-0.7.3 and hostapd-1.0. I extract them, copy the defconfig to .config, and run make. This is where I get a ton of errors with src/crypto/tls_openssl.c. Those errors can be found here, http://pastebin.com/ZpdUz6vV

Here's the last few lines of the errors:
../src/crypto/tls_openssl.c:2889: error: âtls_sess_sec_cbâ undeclared (first use in this function)
../src/crypto/tls_openssl.c:2900: warning: implicit declaration of function âSSL_set_hello_extension_cbâ
../src/crypto/tls_openssl.c:2900: error: âstruct tls_connectionâ has no member named âsslâ
../src/crypto/tls_openssl.c:2900: error: âtls_hello_ext_cbâ undeclared (first use in this function)
../src/crypto/tls_openssl.c:2906: error: âstruct tls_connectionâ has no member named âsslâ
../src/crypto/tls_openssl.c:2915: error: âstruct tls_connectionâ has no member named âsslâ
make: *** [../src/crypto/tls_openssl.o] Error 1

I've searched around for a solution, but haven't found anything that works. Has anyone experienced this problem and know of a fix?

I'm new to SET toolkit, and I need some help. I tried to use credential harvester for the web attack option, and I use www.facebook.com for testing. If I tried in the browser the ip address for the server, I was able to see the facebook login page, and after I enter name and password and click "login", SET successfully recognizes my user input. However, the browser doesn't redirect to the real www.facebook.com, instead it prompt a download with an empty file like"login.php". I tried www.gmail.com, and it's the same thing. I downloaded SET using svn for the latest version(4.0.1). Does anybody have similar problem? Is there any configuration that I need to do? Thanks.

I run this command for ettercap:
Code:
ettercap -Tql -eth1 -M arp:remote // //
Now here is the problem. If I am already connected to WiFi but am not using the internet, ettercap doesn't detect it and adds only the gateway to the hosts list.
But if I try for example to search something on google, and immediately execute the aforementioned command, it adds 2 hosts to the list, the gateway and my phone.

Now for the SSLStrip.

I've ran SSLStrip with the following command
Code:
sslstrip -a -k -f
Now every time I open websites on my phone, at first it says "Connection Error". Then after refreshing, the site opens just fine and I can see all usernames/passwords on sites like gmail, facebook, and others.

Is there anyway to prevent the page reset?

And, if I try to login in a website like "www.domain.com:2095/login" it doesn't show up on ettercap.

my problem at the moment is that after i run nmap --ipaddress--/24 -v i find the 455 port and it says it is open. however after i set up my exploit, payload, rhost, then enter exploit, msfconsole says that the host is unreachable even though nmap said the port was open and when i launch nmap again it says that the host is down. i cant seem to find a post similar to the problem im having. :[ (exploiting windows xp sp2 on vmbox. bt5r3 also launched on vmbox.)

I'm currently using my main laptop as the host of BT, I am running Backtrack 5 R3 under Vbox. (My current laptop is a Alienware m17x R3 with all the hardware at max)
However, I was really thinking getting a new laptop or net book and run Backtrack as a standalone OS. I want to use this for penetration testing Only, would be to test my own equipment/network (company network/home network)
I would like to have a more secure environment and I love learning/acquiring knowledge about security matters in IT.

I have been reading all over the web for the past week on what kind/which model of laptop/netbook to get.
However, most are talking about Backtrack 5 r1/r2 and want to dualboot windows/BT and thus often requires different bare minimum set up.
I want to spend as few $ as possible, will be running BT 5 r3 as a standalone OS. I will ONLY use this netbook/laptop for pen testing. (no game, no video watch/editing etc..)

I need the netbook/laptop to be :
Light and small (max 14 inch, not too heavy (max 2 kg? unless this is unrealistic for some reason)
Will use Alfa usb wifi adapter so I don't need a wifi adapter that can inject or sniff integrated to the machine.
Anything else I don't care, looking for your recommendation on what specs to use.

----------------------------------------------------------------------------
What should I go with? Netbook or Laptop(includes "ultrabook") ?
How much RAM is enough for anything regarding pen testing (3-4 GB? or 6+ GB?)
What kind of CPU should I be looking for ? (Intel only? I3+ or the celeron group is plenty)
Is there any reason why I would want a better graphic card than integrated graphic?
What kind of extra is required on the machine ? (CD ROM? Ethernet? how many USB? 2.0 or 2.0+3.0?)
Is there any compatibility issues that I should be concerned with before purchase or any specific requirements to run all the tools of BT5?

If I can get some information on those questions or if you have an idea of a specific model I could get, it would be great!
My budget (ideally) would be below 300$, not sure if this is entirely possible.

Once again, thanks for the precious help and I hope this will be of great help for people looking to buy a netbook or laptop and run BT as a standalone operating system.

The backtrack book said to use Alfa AWUS036h card and it is 1000 meters but i found one for Alfa AWUS036nh with wireless g/n and 2000 meters. Is this what I should stick with or should i try the new one? I need just a suggestion of what is the best network antenna for backtrack 5 r 3 the new release...thank you in advance

I've used ettercap a few times now and have had success but I still have a few questions because I feel a lot of the guides are confusing regarding the below two topics.

Q1: It seems like half the guides say to change the value of /proc/sys/net/ipv4/ip_forwarding to 1 before beginning. Then other guides dont mention this point but say to editing the /etc/ettercap/ettercap.conf file and uncomment the part regarding iptables. Do these both accomplish the same thing or are they both necesary? Please shed some light on this.

Q2: I'm a little confused why the man pages mention target1 and target2 (// //). I've always done mitm arp attacks using // // and just hit everything since I'm just playing with a few VM's, although a lot of guides point one to the gateway .1 and the other at one specific victim. Is this how it should be? Gateway then victim? Seems odd it says target1 target2 if it should be gateway tartget... Also is the gateway my IP or the actual gateway for that subnet?

it is clientless ap
i associated with the ap and by this command
aireplay-ng -1 0 -e teddy -a 00:14:6C:7E:40:80 -h 00:09:5B:EC:EE:F2 ath0
and it said successful association
but when used chopchop or fragmenation attack
it still saying reading packets for much more time and the number of packets increase and there is no change
and the data collected is zero
what can I do to get collect data
thanks in advance

How I can scan machines which are connected to the same router via WLAN? After connecting to the router I obtain an IP
in the range of 10.0.0.X. Same for the other machines. If I try a ping I can't reach any of the other machines. The router is
a Pirelli PRG AV4202N model. Do I have to create port forwarding rules?

Hi! I just dont know what more to try to make it run!
I cant disable my laptop wireless card and set my AWUS036H to wlan0(but i have the doubt if it's necessary because i never see in tutorials wlan0 and wlan1)

But if i turn off my laptop wireless card from the power button, even though the alpha card is flashing i cant connect to wi-fi.
Is as if it would never be recognized.
I try all the install tutorials for rtl8187.

hello. i have a problem but i m not that sure whut is me or my worldlist. my friend forgot his psw after he reinstaled a fresh windows so no way t recuperate from his pc. so i tryed t crack it from his pc. i m beginer also on bt but i guess i did it fine. the problem is after i received a handshake i used aircrak and....w8 w8 w8 w8 till 27 hrs and bam...psw not in wordlist. i used more worldlists like worldlist final.darkc0de and others some of em around 40 gb had. and dunno whut to do more^^.now all i know is his psw is something like that 8yzy05n8ttokYidcbKqi 20 digits and facken hard with caps lock on it. so if any1 have an ideea with a better wordlist or maybe can resolve my capture.cap with a better pc send me a mail at Admin note: E-mail not needed. any help is wellcome .thx

Hello, i don't know if am in the right place but i cant find anywhere to get help. have searched the internet but no much info. I run a dual boot of windows 7 and backtrack5. Rescently, i stumbled on a tutorial found on http://www.youtube.com/watch?v=M6sPYzHhask when i created a script like the one below, it doesn't seem to recognize the escape sequences. an example of the code and the output is found below.

CODE:

#what have you learned so far?
#Lets do some real numbers multiplication
a=3.5
b=14.3
c=19.8

Pretty cool \n I love backtrack and i really want to learn it
root@bt:~/Desktop#

The last echo statement displays the newline character instead of displaying the sentence in the next line. Please can someone help me make this work on my terminal? I think it used to work before. Thanks in advance

I am looking to replace my Hawking HWUG1 wireless adaptor for use with a macbook pro and Backtrack 5rc3. Its been a while since I messed around with pentesting and I seem to be having trouble with my HWUG1 and the pwr/lnk light lighting up. So I figure its time to replace. I would like something that has both receiving capabilities and injection? Im not sure if Im phrasing that correctly. If this is in the wrong section please move it.

I have downloaded the last version, "BT5R3-GNOME-32.iso" with MD5 aafff8ff5b71fdb6fccdded49a6541a0 and created an USB Disk.

Found my Wireless Card with : "iwconfig"

Put my wireless card on monitor mode with: "airmon-ng start wlan0"

Found the BSSID of my router that I want to crack. It is one Thomson DWG850-4B. I set up its configuration to WPA2, Cipher: CCMP, Authentication: PSK.
I first tried to use "airodump-ng wlan0" but it didn't work, and than I tried "airodump-ng mon0" which worked out and I was able to see my router BSSID.

Once I checked that I could see my router, I sent: "reaver -i mon0 -b BSSID -vv".
It is important to mention that I'm not conected to the internet trough my wireless router. My notebook doesn't have it's connection on it.

I left the computer for over 12 hours runing, but nothing was showing on the screen.

Than, I decided to open another command windows and sent instruction "airodump-ng mon0". I was trying to see if I was still able to see my router, when I realized that with this other screen running, the previous one strart working and issuing the following informations:

I'm using Virtualbox on my BT5 and I created several VM's (Windows and Linux). NAT works fine on the VM's but now
I would like to get bridge mode running. I tried setting my eth0 to a static IP and changed the network setting for my VM to bridge.
After starting the VM (Win XP SP3) I configured the LAN-Network also with a static IP in the same range. But I think this is not as easy
as i mentioned because it doesn't work.
I can't ping the guest system from by BT5 so I need some help to solve my problem.

How I have to configure Virtualbox and my BT5 to be able to use NMap or Nessus?

It may seem to be a stupid question - Antivirus on Backtrack ??
I want to use BT 5 R3 HDD install as main OS.
I am a newbie and want to learn pentesting with BT tools, so it will be good to use it as main OS so i will be in touch with BT all the time instead of tackling issues of VM run.

As i am newbie and use it as main OS so it is also important to secure my own BT box as i will have all data here. I was thinking to install COMODO Antivirus for Linux.

My questions are :
1. Is it safe to install Comode AV on BT box and exclude /pentext/ folder ??
2. Will it destroy BT box - as BT has lot of tools that antiviruses may not like ?

hi
i was using bt r2 installed on my laptop but after r3 release i uninstall and setup a virtualbox vm with a new r3.
my problem is wireless usb adapter does not appear on bt
i connected it via vm, it disconnects from win7 when i connect to vm as it shoud be. but it does not appear on bt
i am using same wireless as on r2 it was fine (tp-wn722n)

Howdy, didn't know where else to post this other then the 'experts' thread. Wondering since I'm using PoE, and not usb would I be able to use BT5? For starters a few quick notes. It uses the 'AirOS' platform, been thinking of going to Openwrt for the flashing, but hoping I don't need to mess with all that fun stuff. I have the ethernet running to a repeater for wifi throughout the house. And on the 2nd gen I-5 so should have more then enough power to go through all the code? .. Not that much on Linux savy, but I do very well on the learning curves, and I'm not askin how to use it, even though I'm sure I'll be on the wiki nonstop this week if in fact, it is 'doable'. Lol... Thanks in advance, and thanks for the future responses. :)

! HELP! Hello, I have a problem as follows: I have received a handshake and have the cap file but I can not find the key! Have already undergone an 8 gigabyte Wordlist with Aircrack leave but found nothing ... I'm really desperate .. I really need help .. Super, it would also me who could decrypt the key to a ... Thanks in advance! greeting